Need ideas: moving stuff to server
Net Llama!
netllama
Sat May 14 14:38:30 PDT 2005
On 05/14/2005 11:36 AM, Michael Hipp wrote:
> David A. Bandel wrote:
>> Don't make is easy, do you? But if you can ssh in then become root,
>> what's the difference? If you're worried about dictionary attacks
>> against ssh as root, why not just disable password logins and only allow
>> via authorized_keys? That would fix several problems in one step.
>
> I don't allow password logins nor do I allow root login. Only to bona
> fide users and only with private keys. Forces the attacker to know a
> *lot* to even begin to mount an attack.
Its your box, but that sounds like overkill, especially considering your
current conundrum. Do you really believe that an attacker is going to
be able to guess a key pair ?
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
L. Friedman netllama at linux-sxs.org
LlamaLand http://netllama.linux-sxs.org
12:35:01 up 32 days, 22:48, 1 user, load average: 0.00, 0.01, 0.00
More information about the Linux-users
mailing list