[EMAIL PROTECTED] schrieb:
This is a bit off topic, but I am betting someone can offer some advice.
My newly installed servers for my first ofbiz installation are getting
hammered with SSH login requests and probably others I do not know about. I
need to expose SSH on at least one to allow me to manage the servers
First simple measure: change the ssh port (hey I said simple)
Then configure ssh to use public key authentication only.
remotely. I am also concerned that someone will eventually guess the
password to one of the ofbiz accounts (I am getting one login request every
10 seconds). I am also concerned about the bandwidth being consumed by
these pirates.
It depends on who needs access to the OFBiz management apps - if you do
it from a fixed ip then allow access to port 8443 only from this ip
(with mod_access for example) or through an ssh tunnel.
Christian
