-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
> No. You're allowing people to ssh directly to your firewall. That's > not safe. At the very least use tcpwrappers to limit what IP's can > connect to the sshd daemon. Even better, limit it to key based ssh'ing > (ie no interactive login). Make sure the following are set in /etc/ssh/sshd_config: PermitRootLogin no PasswordAuthentication no PermitEmptyPasswords no Protocol 2 PubkeyAuthentication yes UsePrivilegeSeparation yes Mark. - -- Mark Watts Systems Engineer QinetiQ TIM St Andrews Road, Malvern GPG Public Key available on request. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQE+bjv4Bn4EFUVUIO0RAhfDAKCAWQsjrY+aFxqvqfiXvfYBvewIzQCg8FWX 03hnjtj8wczdmyezMGAZ8XU= =RM6b -----END PGP SIGNATURE-----
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
