Re: Disabling access to SSH
Mark Maas <mark@menem.mine.nu> wrote on 16.11.2004
08:50:57:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Hi All,
>
> I'm trying to restrict access to my ssh server from the outside to
> allow only two IP adresses and the internal lan ofcourse.
> And deny access to everyone else.
>
> People are trying the guess a username and password tactic a little
> too much to my liking...
>
> Do I use hosts.deny, hosts.allow for this? If so, which one takes
> precedence?
I use iptables, so that I do not have to worry about
such things.
just allow the two addresses and drop all others...
If you like to use hosts.deny and hosts.allow, I believe
that hosts.deny overrules hosts.allow. This is at least, how I experienced
the two configs.
HTH,
Andy
> Thanks,
> Mark
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.3-nr1 (Windows 2000)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFBmbFh8SFyUHWnEvMRAlDtAJ9JeyTiSUFts65XWd+1vXoPFLM+EQCfR+gL
> INqDUnU56gu08MuHy1OxZNQ=
> =Fa76
> -----END PGP SIGNATURE-----
>
>
> --
> To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
>
----------------------------------------------------------------------------
| Andreas Sumper
| Administration / Services / IT Security
| nimbus Development IT Consulting GmbH
| we unleash the power of domino
|
| Annenstrasse 30/1
| 8020 Graz
| Tel.: +43 (0) 316 714 255 -> DW 18
| Fax: +43 (0) 316 714 255 -> DW 4
| http://www.nimbus.at/
----------------------------------------------------------------------------
| sent through Lotus Notes 6.5.1
| using wine on a linux box
Reply to: