Re: site-to-site VPN with credential prompts?

To: debian-user@lists.debian.org
Subject: Re: site-to-site VPN with credential prompts?
From: Jeffrey Walton <noloader@gmail.com>
Date: Tue, 25 Mar 2025 18:05:04 -0400
Message-id: <[🔎] CAH8yC8mYQqSoT10waq_M_mqQubWYw_kSovc+fiX2JCKzuWhUmQ@mail.gmail.com>
Reply-to: noloader@gmail.com
In-reply-to: <[🔎] Z+MWGbulcxQKF2bb@tuxteam.de>
References: <[🔎] CAH8yC8kg=yNE7Avp6++wEr3Nfcnpp5zWMmjRjhaGRHmx0ubMoQ@mail.gmail.com> <[🔎] c4e72e8d-5d09-423d-b907-52c7e1cf1f31@gmail.com> <[🔎] eb891680-242e-42bf-80b9-f2c8af617e43@gmail.com> <[🔎] fa07848b356064f4bcdc46af5a378c91600e0923.camel@janc.be> <[🔎] Z-LV6BAgLyLnXQva@phare.normalesup.org> <[🔎] c4b2b7ceb5ce7475f20f46e3964062d55bad8a1f.camel@janc.be> <[🔎] CAO6YxPy=M-NRhGGmhjrMPBZpsyjFBm+yrBOfZz3JZoyhB0r94g@mail.gmail.com> <[🔎] Z+MWGbulcxQKF2bb@tuxteam.de>

On Tue, Mar 25, 2025 at 4:46 PM <tomas@tuxteam.de> wrote:
>
> On Tue, Mar 25, 2025 at 01:58:27PM -0400, Timothy M Butterworth wrote:
>
> [...]
>
> > It is not that SSH is less secure, it is that crackers attempt to brute
> > force SSH servers [...]
>
> You still use passwords?

++.

$ cat /etc/ssh/sshd_config.d/10-pubkey_auth.conf
# Disable passwords
PasswordAuthentication no
ChallengeResponseAuthentication no
KerberosAuthentication no
KerberosOrLocalPasswd no
GSSAPIAuthentication no
UsePAM no
# Enable public key
PubkeyAuthentication yes

$ cat /etc/ssh/sshd_config.d/20-no_root_login.conf
PermitRootLogin no

Jeff

Reply to:

References:
- site-to-site VPN with credential prompts?
  - From: Jeffrey Walton <noloader@gmail.com>
- Re: site-to-site VPN with credential prompts?
  - From: jeremy ardley <jeremy.ardley@gmail.com>
- Re: site-to-site VPN with credential prompts?
  - From: jeremy ardley <jeremy.ardley@gmail.com>
- Re: site-to-site VPN with credential prompts?
  - From: Jan Claeys <lists@janc.be>
- Re: site-to-site VPN with credential prompts?
  - From: Nicolas George <george@nsup.org>
- Re: site-to-site VPN with credential prompts?
  - From: Jan Claeys <lists@janc.be>
- Re: site-to-site VPN with credential prompts?
  - From: Timothy M Butterworth <timothy.m.butterworth@gmail.com>
- Re: site-to-site VPN with credential prompts?
  - From: <tomas@tuxteam.de>

Prev by Date: Re: site-to-site VPN with credential prompts?
Next by Date: Re: site-to-site VPN with credential prompts?
Previous by thread: Re: site-to-site VPN with credential prompts?
Next by thread: Re: site-to-site VPN with credential prompts?
Index(es):
- Date
- Thread