Archives
Archives
| From: | Kwon <kwon@××××××××××.org> | ||
|---|---|---|---|
| To: | gentoo-hardened@l.g.o | ||
| Subject: | [gentoo-hardened] Re: Hardening SSHD | ||
| Date: | Wed, 25 Oct 2006 16:59:29 | ||
| Message-Id: | eho4ui$dvm$1@sea.gmane.org | ||
| In Reply to: | Re: [gentoo-hardened] Hardening SSHD by Brian Davis |
||
| 1 | > Set PermitRootLogin to no |
| 2 | > Disallow password logins |
| 3 | > Use DSA keys. |
| 4 | > Move the SSHD port to something other than 22 (security by obscurity). |
| 5 | > Yes, we all know that someone will find it, but that someone will be 1 |
| 6 | > in 1000 rather than all 1000 hitting the port. |
| 7 | How about the technique of port knocking! Try this site: http://en.wikipedia.org/wiki/Port_knocking It explains quite well! |
| 8 | |
| 9 | -- |
| 10 | gentoo-hardened@g.o mailing list |
| Subject | Author |
|---|---|
| Re: [gentoo-hardened] Re: Hardening SSHD | Paulo Roberto Candido dos Santos <zauberschloss@×××××.com> |