Re: Blocking ssh

To: debian-isp@lists.debian.org
Subject: Re: Blocking ssh
From: Arnt Karlsen <arnt@c2i.net>
Date: Mon, 13 Jun 2005 16:09:12 +0200
Message-id: <[🔎] 20050613160912.7dc9aade.arnt@c2i.net>
In-reply-to: <[🔎] 87psuq7iq0.fsf@hp-factory.de>
References: <[🔎] 55900.209.30.158.92.1118642635.squirrel@client.dailydata.net> <[🔎] 87psuq7iq0.fsf@hp-factory.de>

On Mon, 13 Jun 2005 10:40:23 +0200, Simon wrote in message 
<[🔎] 87psuq7iq0.fsf@hp-factory.de>:

> 
> Hi
> 
> "R. W. Rodolico" <stargazer@dailydata.net> writes:
> > I'm getting quite a few cracking attempts through ssh, most recently
> > from some Korean site. I have three people who are allowed ssh
> > access, but two additonal ones are able to make webmin connections
> > (https to port 10000). Unfortunately, all of them come in from
> > dynamic IP's.
> > 
> > Any other suggestions are very appreciated.

..ban _everything_, then decide which PHB whine 
you wanna _consider_ listening to.

> Use ssh with keys and disable password auth.  I think there's even a
> way to do key-based user auth on https, but i'm not sure...

..also possible to wrap that too in key based ssh.  
And, that again, in pretty http picture traffic etc.

-- 
..med vennlig hilsen = with Kind Regards from Arnt... ;o)
...with a number of polar bear hunters in his ancestry...
  Scenarios always come in sets of three: 
  best case, worst case, and just in case.

Reply to:

References:
- Blocking ssh
  - From: "R. W. Rodolico" <stargazer@dailydata.net>
- Re: Blocking ssh
  - From: Simon Walter <simon.walter@hp-factory.de>

Prev by Date: Re: Billing-Software for managing an ISP
Next by Date: Re: Apache2/PHP permissions in ISP environment
Previous by thread: Re: Blocking ssh
Next by thread: Re: Blocking ssh
Index(es):
- Date
- Thread