I did this for all jenkins slaves on rackspace* servers. So +1 for the idea.
- Kiril ----- Original Message ----- > From: "Ewoud Kohl van Wijngaarden" <[email protected]> > To: [email protected] > Sent: Wednesday, October 9, 2013 12:18:02 PM > Subject: Re: Security > > On Wed, Oct 09, 2013 at 10:41:36AM +0200, Vinzenz Feenstra wrote: > > I see again quite a lot of "POSSIBLE BREAK-IN ATTEMPT" alerts lately > > mainly originating from *hichina.com > > > > Could you guys please address this? Thanks > > What do you think of disabling SSH passwords and use just SSH keys? > Fairly easy to roll out using puppet and thanks to puppet we also have > most of our keys installed. It will mean that we might need to install > some more keys for a few people and it may not stop the possible break > in attempts in the logs (because those are because of incorrect forward > + reverse DNS), but should make it more secure. > _______________________________________________ > Infra mailing list > [email protected] > http://lists.ovirt.org/mailman/listinfo/infra > _______________________________________________ Infra mailing list [email protected] http://lists.ovirt.org/mailman/listinfo/infra
