Celejar([EMAIL PROTECTED]) is reported to have said: > On Mon, 11 Jun 2007 16:06:19 +0300 > David Baron <[EMAIL PROTECTED]> wrote: > > > On Monday 11 June 2007, [EMAIL PROTECTED] wrote: > > > > Not exactly answering your question. But I do see a lot of IPs > > > > performing > > > > dictionary attacks on my machine. What I do is go through > > > > /var/log/auth.log periodically and add the offending IPs to > > > > /etc/hosts.deny . That way, in future, the offending IPs cannot perform > > > > any dictionary attacks. I currently have around 85 IPs in this list > > > > (starting Apr 10, 2007) :-) > > > > > > > > You should also disable remote root logins to make the machine more > > > > secure. > > > > > > The best thing you can do is to disable password logins altogether. > > > Using public keys is much more secure and makes it *impossible* for a > > > dictionary attack to succeed. > > > > Might be best idea. How does one do it? > > Edit /etc/ssh/sshd_config' and set 'PasswordAuthentication' and > 'ChallengeResponseAuthentication' to 'No'.
Just a note that commenting out 'PasswordAuthentication yes' does NOT disable it. PasswordAuthentication defaults to yes. Wayne -- Every program has two purposes -- one for which it was written and another for which it wasn't. _______________________________________________________ -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
