Fwd: Brute-Force SSH Server Attacks Surge -- InformationWeek
Lloyd Kvam
python at venix.com
Thu May 15 10:39:53 EDT 2008
On Thu, 2008-05-15 at 09:47 -0400, Bob King wrote:
> I always thought that disabling root access via ssh is a good idea,
> but reading this I would assume it would be a good idea to just
> deactivate password access via ssh all together and limit access to
> systems with keys known to the host. Moving the sshd to a non-standard
> port would be another move, but would that stop more than the most
> basic tools?
>
> I would be interested in hearing recommendations from other folks on
> the list.
I stuck with the standard port 22 simply to keep coordination with
others simpler. Passwords are disabled. If I am involved with a
project that requires giving others server access, they *must* give me a
public key to obtain access.
This also provides a chance to showcase tools like rsync and sshfs which
are surprisingly unknown in the windows world.
--
Lloyd Kvam
Venix Corp
DLSLUG/GNHLUG library
http://www.librarything.com/catalog/dlslug
http://www.librarything.com/profile/dlslug
http://www.librarything.com/rsshtml/recent/dlslug
More information about the gnhlug-discuss
mailing list