From: "Wolfgang S. Rupprecht" <wolfgang.rupprecht+gnus200810@xxxxxxxxx>
Sent: Wednesday, 2008, October 08 09:54
Jonathan Allen <jonathan@xxxxxxxxxxxxxxxxxx> writes:
PasswordAuthentication yes
ChallengeResponseAuthentication no
UsePAM yes
X11Forwarding yes
Check your file permissions. All the files leading up to your
authorized_keys file need to be "go-w".
You might want to google for "sshd config" without the quotes. In
particular "PasswordAuthentication yes" and "UsePAM yes" are a bad
idea. I'm surprised that sshd still allows that given the level of
sshd password guessing going on.
It's possible to configure a firewall to give one shot every three minutes
to logging in via ssh.
How long do you think it would take to guess "12345678" as a password
at one try every three seconds? (Or for the real paranoids one try
every three minutes.)
{^_-}
--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
Guidelines: http://fedoraproject.org/wiki/Communicate/MailingListGuidelines
