Re: On defense of the sshd crackers
On Oct 9, 2007, at 7:32 AM, Henrique de Moraes Holschuh wrote:
On Tue, 09 Oct 2007, T o n g wrote:
I used to turn on my sshd just in case that I need to ssh back
box. But recently, I noticed that whenever I turn it on, almost
there will be a cracker attempting cracking into my sshd:
Drop password logins of any type in ssh completely, use only crypto
Also, explictly tell sshd the users which should be able to login,
deny all others, no matter what.
If that's impractical (as it often is, on multiuser systems), at
least deny root logins.