[olug] Help w/ my server
Lou Duchez
lou at paprikash.com
Mon Jul 23 21:51:00 UTC 2012
> I would also change the default ssh port. Yes it is security by
> obscurity, but it does block virtually all the bots from guessing your
> password(if you have it enabled). I have disabled root ssh logins; if
> root tries to log in, they will get an "auth failed" msg even if they
> have put in the correct pw. You might also consider disabling remote
> ssh password logins.
>
I run Fail2Ban on my various servers, and I think all but one of them
are running SSH on non-default ports. Coincidentally enough, the only
server where I ever -- EVER -- get SSH hacker alerts is the one where
SSH is running on the default port.
By all means, disable root SSH logins too. The one exception might be
if you are SSH-ing in from a trusted IP, and you can set that up in your
sshd_config like so:
AllowUsers user1 user2 root at 192.168.1.*
More information about the OLUG
mailing list