Server Security (was SSH attack)

Chris Brenton cbrenton at chrisbrenton.org
Wed Dec 21 16:36:01 EST 2005


On Mon, 2005-12-19 at 22:22 -0500, Greg Rundlett wrote:
>
> The environment I find myself in now is unlike ones that I'm used to. 
> SSH is allowed for some hosts while not for others.  For most host
> access, you need to go through a single point of entry (sentry), and
> then ssh from there over the local network.  (There is both a
> front-end network 10.x.x.x for the hosted machines, and a backend
> network 10.y.y.y). 

Bill Stearns has an excellent write up on exactly how to solve your
problem. See:
http://www.stearns.org/doc/ssh-techniques-two.current.html

He also has tons of other SSH goodies and info up there.

HTH,
Chris





More information about the gnhlug-discuss mailing list