Well, for me. I just put my sshd in a different port. (like 65525) or something like that. And of course, I disable root logins as well. Plus I only allow one user to logon to the sshd.
On Sun, 18 Jul 2004 22:49:24 +0800, eman <[EMAIL PROTECTED]> wrote: > On Sun, 18 Jul 2004 22:37:26 +0800, Holden Hao <[EMAIL PROTECTED]> wrote: > > My logwatch has been reporting lately of several failed attempts of > > somebody logging in to my ssh server. It is obvious from the logs that > > somebody is trying to guess my root password. My only security > > protection at this time is to disable root log-ins. > > > > I would like to know how the others here protect their ssh server. > > > > Holden > > Mine's the same... i don't allow root access via ssh. But i'm not sure > this will also disallow sudo-ing from another account. (?) > I think you could also specify the ips that'll be allowed to access > your box. AFAIK, it's in /etc/hosts.allow > HTH > > -- > I don't want to achieve immortality through my work. I want to achieve > immortality through not dying. -- Woody Allen > > > -- > Philippine Linux Users' Group (PLUG) Mailing List > [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) > Official Website: http://plug.linux.org.ph > Searchable Archives: http://marc.free.net.ph > . > To leave, go to http://lists.q-linux.com/mailman/listinfo/plug > . > Are you a Linux newbie? To join the newbie list, go to > http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie > -- teejay teodoro teejay[at]gmail[dot]com -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
