On Oct 9, 2007, at 7:32 AM, Henrique de Moraes Holschuh wrote:
On Tue, 09 Oct 2007, T o n g wrote:I used to turn on my sshd just in case that I need to ssh back into my box. But recently, I noticed that whenever I turn it on, almost instantly,there will be a cracker attempting cracking into my sshd:Drop password logins of any type in ssh completely, use only crypto keys. Also, explictly tell sshd the users which should be able to login, it willdeny all others, no matter what.
If that's impractical (as it often is, on multiuser systems), at least deny root logins.