Re: How can I secure a Debian installation?

To: debian-user@lists.debian.org
Subject: Re: How can I secure a Debian installation?
From: Alex Mestiashvili <alex@biotec.tu-dresden.de>
Date: Fri, 31 Jan 2014 21:58:31 +0100
Message-id: <[🔎] 52EC0E77.2070101@biotec.tu-dresden.de>
In-reply-to: <[🔎] 52EBB86A.9050803@attglobal.net>
References: <[🔎] 52E7310A.1050305@q.com> <[🔎] 52E7430C.2010908@gmail.com> <[🔎] 52E76165.7020903@q.com> <[🔎] 20140128094643.6ee293e7@jretrading.com> <[🔎] CAD4guxPnaDnwBgjEms8PnMT22myXJj7esT01ug-P-feR4+_rQw@mail.gmail.com> <[🔎] 20140128184234.GL3888@copernicus.demon.co.uk> <[🔎] 20140130185311.51a2a863@X200> <[🔎] 20140130202637.GN3888@copernicus.demon.co.uk> <[🔎] CAD4guxODr4vFdqyyg20uJdiK-8zk-dDQX9poa5asX8HuG1hkBg@mail.gmail.com> <[🔎] 52EBB86A.9050803@attglobal.net>

I have to agree with you here, Raffaele. While it's nice to talkabout users and 20 character random keys, the fact of the matter is,they aren't used by the vast majority of users. In many cases, eventhose who *should* know better don't do it.
Sure, you could require a 20 character random key on your site - butyou won't get many people to sign up. Rather than try to remembersuch a password, most people will just move on.

There are other tools too, for example pam-abl [0], which imho makes abrute force almost useless unless there is a distributed brute force...

http://sourceforge.net/projects/pam-abl/

Regards,
Alex

Reply to:

Follow-Ups:
- Re: How can I secure a Debian installation?
  - From: Jerry Stuckle <jstuckle@attglobal.net>

References:
- How can I secure a Debian installation?
  - From: Jon Danniken <danniken@q.com>
- Re: How can I secure a Debian installation?
  - From: Scott Ferguson <scott.ferguson.debian.user@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Jon Danniken <danniken@q.com>
- Re: How can I secure a Debian installation?
  - From: Joe <joe@jretrading.com>
- Re: How can I secure a Debian installation?
  - From: Raffaele Morelli <raffaele.morelli@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Brian <ad44@cityscape.co.uk>
- Re: How can I secure a Debian installation?
  - From: Denis Witt <denis.witt@concepts-and-training.de>
- Re: How can I secure a Debian installation?
  - From: Brian <ad44@cityscape.co.uk>
- Re: How can I secure a Debian installation?
  - From: Raffaele Morelli <raffaele.morelli@gmail.com>
- Re: How can I secure a Debian installation?
  - From: Jerry Stuckle <jstuckle@attglobal.net>

Prev by Date: Re: Wireless AP setup: RTL8188CUS
Next by Date: Re: "cloning" a debian installation
Previous by thread: Re: How can I secure a Debian installation?
Next by thread: Re: How can I secure a Debian installation?
Index(es):
- Date
- Thread