More SSH 'trolling'

[John Thompson]

Mike Ramirez wrote:

> The safest be for this is to make sure that any user in /etc/passwd and
> /etc/shadow has there shell set to nologin that doesn't need SSH 

What I do is only allow certain user names ssh access from outside. 
E.g. from /etc/ssh/sshd_config:

	AllowUsers john skylar

This only allows my son and I to use ssh; everything else gets rejected 
with an "illegal user" error.

-- 

-John (john at os2.dhs.org)