From: | Kwon <kwon@××××××××××.org> | ||
---|---|---|---|
To: | gentoo-hardened@l.g.o | ||
Subject: | [gentoo-hardened] Re: Hardening SSHD | ||
Date: | Wed, 25 Oct 2006 16:59:29 | ||
Message-Id: | eho4ui$dvm$1@sea.gmane.org | ||
In Reply to: | Re: [gentoo-hardened] Hardening SSHD by Brian Davis |
1 | > Set PermitRootLogin to no |
2 | > Disallow password logins |
3 | > Use DSA keys. |
4 | > Move the SSHD port to something other than 22 (security by obscurity). |
5 | > Yes, we all know that someone will find it, but that someone will be 1 |
6 | > in 1000 rather than all 1000 hitting the port. |
7 | How about the technique of port knocking! Try this site: http://en.wikipedia.org/wiki/Port_knocking It explains quite well! |
8 | |
9 | -- |
10 | gentoo-hardened@g.o mailing list |
Subject | Author |
---|---|
Re: [gentoo-hardened] Re: Hardening SSHD | Paulo Roberto Candido dos Santos <zauberschloss@×××××.com> |