323232 is just an exaggeration.. ;) Anyways i switched it to 4444. ;) (any script kiddies out here?) just kidding.
Thanks for the input guys. I guess, it'll be better to take every precaution. So I changed ports, reconfigured ssh to disallow root logins, use machine-based authentication, disallow password authentication, and best of all i've setup iptables to just DROP any ssh connection (except from my laptop). Now if my laptop dies, I just have to be physically present in the server room. ;) On 8/2/05, Gideon N. Guillen <[EMAIL PROTECTED]> wrote: > On 8/3/05, Miguel A Paraz <[EMAIL PROTECTED]> wrote: > > But if they become sophisticated, they could fast scan for TCP ports > > with the SSH signature. I think it's best to just drop the connection > > at the kernel (iptables) level except from trusted IPs. > > Yeah, I did mention this earlier in the thread (to allow only trusted > host to connect in this SSH port). > > -- > Gideon N. Guillen > [EMAIL PROTECTED] > > Take back the web! Download Firefox Today! > http://getfirefox.com > _________________________________________________ > Philippine Linux Users' Group (PLUG) Mailing List > [email protected] (#PLUG @ irc.free.net.ph) > Read the Guidelines: http://linux.org.ph/lists > Searchable Archives: http://archives.free.net.ph > -- Mhac Janapin PBTS SysAd www.pbts.net.ph ============= http://mulingsilang.blogspot.com ============= I'm an Open Source Enthusiast. c",) Mozilla Firefox 1 - getfirefox.com Mozilla Thunderbird 1 - mozilla.org OpenOffice.org 1 ============= _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List [email protected] (#PLUG @ irc.free.net.ph) Read the Guidelines: http://linux.org.ph/lists Searchable Archives: http://archives.free.net.ph
