D&C GLug - Home Page

[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] SSH

 

> On 9/7/06, Henry Bremridge <henry.bremridge@xxxxxxxxx> wrote:
>>
>> From experience, if you leave port 22 open on your network firewall you
>> will receive numerous requests for connection. If these upset you, set
>> ssh
>> to listen on another port (this is not security, just cuts down on some
>> rubbish)
>
> Yea, you get loads of dictionay attacks, you can sit and watch as a
> remote system trys all sorts of usernames to try to get in.
>
> If you do open port 22 to the world make sure you have decent
> passwords, ie lots of letters, numbers upper and lower case and quite
> a few characters the more the better really. If you are going to
> connect in remotley then if it is just from a known location you can
> firewall to just allow that location to get in or if you only connect
> remotley from your machines eg a laptop etc you can pre exchange the
> RSA sigs and not rely on passwords at all.
>
> Robin
>
> --

denyhosts anyone ?


-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html