[vox-tech] Securing SSH
Peter Jay Salzman
vox-tech@lists.lugod.org
Fri, 1 Aug 2003 12:17:00 -0700
On Fri 01 Aug 03, 12:09 PM, Ricardo Anguiano <anguiano@codesourcery.com> said:
> "Daniel Hurt" <dwhurt@ucdavis.edu> writes:
>
> > I know the title is kind of redundant, but I was curious if there is
> > anything beyond these couple of steps that I have taken to secure
> > ssh? [...] Is there anything else that I might consider to help
> > keep the machine secure?
>
> 1) Disallow ssh protocol version 1
> google: "ssh protocol version 1 insecure"
>
> 2) Disallow password authentication and use public key authentication
> only.
>
> 3) Keep up with the latest ssh related advisories.
in the latest LJ (the one with the hulk on the cover) it discusses how
to do #1 and #2. it also has some nice tips to speed up ssh connections
without sacrificing security.
pete
--
GPG Instructions: http://www.dirac.org/linux/gpg
GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E 70A9 A3B9 1945 67EA 951D