Re: Find out host of IP
- From: Wayne Topa <linuxone@xxxxxxxxxxxxx>
- Date: Mon, 11 Jun 2007 11:50:09 -0400
Celejar(celejar@xxxxxxxxx) is reported to have said:
On Mon, 11 Jun 2007 16:06:19 +0300
David Baron <d_baron@xxxxxxxxxx> wrote:
On Monday 11 June 2007, debian-user-digest-request@xxxxxxxxxxxxxxxx wrote:
Not exactly answering your question. But I do see a lot of IPs performing
dictionary attacks on my machine. What I do is go through
/var/log/auth.log periodically and add the offending IPs to
/etc/hosts.deny . That way, in future, the offending IPs cannot perform
any dictionary attacks. I currently have around 85 IPs in this list
(starting Apr 10, 2007) :-)
You should also disable remote root logins to make the machine more
secure.
The best thing you can do is to disable password logins altogether.
Using public keys is much more secure and makes it *impossible* for a
dictionary attack to succeed.
Might be best idea. How does one do it?
Edit /etc/ssh/sshd_config' and set 'PasswordAuthentication' and
'ChallengeResponseAuthentication' to 'No'.
Just a note that commenting out 'PasswordAuthentication yes' does NOT
disable it. PasswordAuthentication defaults to yes.
Wayne
--
Every program has two purposes -- one for which it was written and
another for which it wasn't.
_______________________________________________________
--
To UNSUBSCRIBE, email to debian-user-REQUEST@xxxxxxxxxxxxxxxx
with a subject of "unsubscribe". Trouble? Contact listmaster@xxxxxxxxxxxxxxxx
- References:
- Re: Find out host of IP
- From: David Baron
- Re: Find out host of IP
- From: Celejar
- Re: Find out host of IP
- Prev by Date: Re: Mr. Mad Duck: about etch-stable fluxbox?
- Next by Date: Re: gpsdrive 2.09-2.2 deb package questions Q2 Answer
- Previous by thread: Re: Find out host of IP
- Next by thread: udev rule writing help needed
- Index(es):
Relevant Pages
|
|
