[vox-tech] Securing SSH

Peter Jay Salzman vox-tech@lists.lugod.org
Fri, 1 Aug 2003 12:17:00 -0700


On Fri 01 Aug 03, 12:09 PM, Ricardo Anguiano <anguiano@codesourcery.com> said:
> "Daniel Hurt" <dwhurt@ucdavis.edu> writes:
> 
> > I know the title is kind of redundant, but I was curious if there is
> > anything beyond these couple of steps that I have taken to secure
> > ssh?  [...]  Is there anything else that I might consider to help
> > keep the machine secure?
> 
> 1) Disallow ssh protocol version 1
>    google: "ssh protocol version 1 insecure"
> 
> 2) Disallow password authentication and use public key authentication
>    only.
> 
> 3) Keep up with the latest ssh related advisories.

in the latest LJ (the one with the hulk on the cover) it discusses how
to do #1 and #2.  it also has some nice tips to speed up ssh connections
without sacrificing security.

pete

-- 
GPG Instructions: http://www.dirac.org/linux/gpg
GPG Fingerprint: B9F1 6CF3 47C4 7CD8 D33E 70A9 A3B9 1945 67EA 951D