Re: is it rational to close the 139 port

To: debian-user@lists.debian.org
Subject: Re: is it rational to close the 139 port
From: Henrique de Moraes Holschuh <hmh@debian.org>
Date: Sun, 29 Jul 2012 15:00:04 -0300
Message-id: <[🔎] 20120729180004.GB22383@khazad-dum.debian.net>
In-reply-to: <[🔎] 20120729173055.GR6660@desktop>
References: <[🔎] CAG9cJm=Et-8iCkRgvri3S2M9P_YWWXtj0E-3r0uBwjLUDr8oQg@mail.gmail.com> <[🔎] 500BBA1D.5040800@hardwarefreak.com> <[🔎] CAG9cJmkv5bR9o4bxNqg9ObQzjDFawypq_Q7ugvg4MvffuA04Rg@mail.gmail.com> <[🔎] 500BC87A.4050803@hardwarefreak.com> <[🔎] CAG9cJmnG+cSqmK=diswYTHOF0ooY5d00LiOxPp8OFUotX+a=rw@mail.gmail.com> <[🔎] 20120722113234.GC7631@desktop> <[🔎] 20120722140926.GC6174@khazad-dum.debian.net> <[🔎] 20120722153107.GD7631@desktop> <[🔎] CAOdo=SwUekf+yJix6FFOn_vGHmVWsyOtjnL7WYTO+ngCaj0F9A@mail.gmail.com> <[🔎] 20120729173055.GR6660@desktop>

On Sun, 29 Jul 2012, Brian wrote:
> On Sun 29 Jul 2012 at 13:12:31 -0400, Tom H wrote:
> > On Sun, Jul 22, 2012 at 11:31 AM, Brian <ad44@cityscape.co.uk> wrote:
> > > No default configuration file will ever suit everyone or fit their
> > > needs, but the Debian sshd_config doesn't seem to me to be have any
> > > insecure aspects to it.
> > 
> > Some might say that "PermitRootLogin yes" default is insecure...
> 
> Some might and indeed they do say it, often vociferously. But I've yet
> to see a sound reason advanced for the opinion. 

Well, it is the one account that will accept remote logins (in Debian) that
exists everywhere.  It is indeed an insecure default, mostly because by
default we also allow password-based logins.

Check your logs, and verify the frequency of brute-force attempts per
username.

-- 
  "One disk to rule them all, One disk to find them. One disk to bring
  them all and in the darkness grind them. In the Land of Redmond
  where the shadows lie." -- The Silicon Valley Tarot
  Henrique Holschuh

Reply to:

Follow-Ups:
- Re: is it rational to close the 139 port
  - From: Brian <ad44@cityscape.co.uk>

References:
- Re: is it rational to close the 139 port
  - From: lina <lina.lastname@gmail.com>
- Re: is it rational to close the 139 port
  - From: Stan Hoeppner <stan@hardwarefreak.com>
- Re: is it rational to close the 139 port
  - From: lina <lina.lastname@gmail.com>
- Re: is it rational to close the 139 port
  - From: Stan Hoeppner <stan@hardwarefreak.com>
- Re: is it rational to close the 139 port
  - From: lina <lina.lastname@gmail.com>
- Re: is it rational to close the 139 port
  - From: Brian <ad44@cityscape.co.uk>
- Re: is it rational to close the 139 port
  - From: Henrique de Moraes Holschuh <hmh@debian.org>
- Re: is it rational to close the 139 port
  - From: Brian <ad44@cityscape.co.uk>
- Re: is it rational to close the 139 port
  - From: Tom H <tomh0665@gmail.com>
- Re: is it rational to close the 139 port
  - From: Brian <ad44@cityscape.co.uk>

Prev by Date: Re: Missing rtl_nic/rtl8105e-1.fw
Next by Date: Re: systemd
Previous by thread: Re: is it rational to close the 139 port
Next by thread: Re: is it rational to close the 139 port
Index(es):
- Date
- Thread