Re: Blocking ssh
On Mon, 13 Jun 2005 13:00:52 +0200
Gaetano Zappulla <gaetano@linux.it> wrote:
> R. W. Rodolico ha scritto:
>
> > I'm thinking about having only one machine that people must log
> > into, and all the other machines must originate from that login
> > machine. Any other suggestions are very appreciated. I do security
> > updates weekly, so I'm never too far behind the times.
>
> portknocking (http://www.portknocking.org/) can help you.
There's a knock daemon in Sarge, too. See "apt-cache show knockd". We
use it at work with good success (there's a Windows client available on
the knockd homepage).
HTH,
Jacob
Reply to: