Security Incidents mailing list archives
RE: SSH scans...
From: "KEM Hosting" <security () kemhosting com>
Date: Mon, 20 Dec 2004 17:18:46 -0600
1. "ssh" should be configured to prohibit root logins
Sometimes not an option. It's useful to backup machines with rsync...
Try this: http://www.hackinglinuxexposed.com/articles/20030115.html There's a whole series on how to configure password-less root SSH logons that only allow you to run a pre-given command (eg: rsync). I implemented this on my backup box. I turned off root logins except those coming from my backup server, using the private key and running only the pre-selected rsync command...works well. Ed
Current thread:
- Re: SSH scans..., (continued)
- Re: SSH scans... Barrie Dempster (Dec 20)
- Re: [incidents] SSH scans... Tim Kennedy (Dec 20)
- Message not available
- Re: [incidents] SSH scans... Tim Kennedy (Dec 20)
- Message not available
- Re: SSH scans... Keith Morgan (Dec 20)
- Re: SSH scans... Gerry Dalton (Dec 20)
- Re: SSH scans... Peter Willis (Dec 20)
- Re: SSH scans... skippy1 (Dec 21)
- Re: SSH scans... Peter Willis (Dec 20)
- Re: SSH scans... Raymond Lillard (Dec 20)
- Re: SSH scans... Ben Nelson (Dec 20)
- Re: SSH scans... Steve Kemp (Dec 20)
- RE: SSH scans... KEM Hosting (Dec 21)
- Re: SSH scans... Michael H. Warfield (Dec 21)
- Re: SSH scans... nixsec (Dec 22)
- Re: SSH scans... Dejan Markovic (Dec 22)
- re: SSH scans... brian () ethernet org (Dec 21)
- re: SSH scans... Kerry Thompson (Dec 22)