On July 18, 2004 08:54 am, Teejay Teodoro wrote: > Well, for me. I just put my sshd in a different port. (like 65525) or > something like that. And of course, I disable root logins as well. > Plus I only allow one user to logon to the sshd. >
If you know for sure that only computers from the Philippines are allowed to ssh into your machine, then research the ip address blocks allocated to the Philippines, then setup an iptables/netfilter firewall that allows only Philippine ip address blocks to ssh into your machine and disallow all others. This does not eliminate the possibility of someone rooting your box but it does reduced the "risk". It reduces the risk by reducing the number of possible ip addresses a potential hacker can hack your box from. It's a probability thing. I typically narrow my iptables firewall to a C class block when I know for sure I am only allowing certain ip address blocks ssh access. This reduces the possible pool of 4 billion ip addresses hackers can hack from to a mere 254. Now you have to ask yourself, how many possible hackers are there in 4 billion versus how many possible hackers are there in 254. -- Lyndon Tiu -- Philippine Linux Users' Group (PLUG) Mailing List [EMAIL PROTECTED] (#PLUG @ irc.free.net.ph) Official Website: http://plug.linux.org.ph Searchable Archives: http://marc.free.net.ph . To leave, go to http://lists.q-linux.com/mailman/listinfo/plug . Are you a Linux newbie? To join the newbie list, go to http://lists.q-linux.com/mailman/listinfo/ph-linux-newbie
