Re: question about ssh

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: question about ssh
From: James McKenzie <jjmckenzie51@xxxxxxxxxxxxx>
Date: Thu, 30 Dec 2004 22:34:36 -0700
Domainkey-signature: a=rsa-sha1; q=dns; c=simple; s=test1; d=earthlink.net; h=Message-ID:Date:From:User-Agent:X-Accept-Language:MIME-Version:To:Subject:References:In-Reply-To:X-Enigmail-Version:X-Enigmail-Supports:Content-Type:Content-Transfer-Encoding; b=eDeO/1EjTQAGyMy4NN+J4Um1YI4/W11KZkPKKFvDHu9JhKddUM+eSlnv+PHV7bz9;
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla Thunderbird 0.9 (X11/20041127)

Ed Wilts wrote:

On Thu, Dec 30, 2004 at 09:19:35PM +0800, chi wrote:

My recommended approach would be to block *all* incoming connections to sshd via either /etc/hosts.deny or via iptables. Then, add only those hosts or subnets who you know need incoming access. In my case, I allow incoming access from my office subnet and from a trusted colleague but everybody else is blocked.


Example iptables lines please?

I think the idea of using port 2222 is a better one.

James McKenzie

Follow-Ups:
- Re: question about ssh
  - From: Ed Wilts

References:
- question about ssh
  - From: chi
- Re: question about ssh
  - From: Ed Wilts

Prev by Date: Re: Fedora on servers
Next by Date: Re: patchfile
Previous by thread: Re: question about ssh
Next by thread: Re: question about ssh
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]