On 13/01/06, Steve Holdoway wrote: > > * Restrict access to your ssh port by source IP. No point in allowing > > the script-running American hackers to get as far as your sshd if only > > your mate across town needs accesss. > ... and if your mate is on ADSL like most of us? B*gger all use then > unless they've purchased a static IP address. So you'll need to rely on > something like hostnames and dyndns to fill in the blanks there.
If you know the address range of your friend's ISP's dynamic pool, then you can at least narrow your exposure. Yuri -- ** WARNING to mailing list repliers ** Gmail over-rides "Reply-To:" field. Check your "To:" address before sending reply to this post.
