Alert!!
James Kosin
jkosin at beta.intcomgrp.com
Tue Sep 14 13:27:42 UTC 2004
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Everyone,
Just an update:
~ 1) I've noticed some traffic on the net recently trying to access
port 111 (I have it blocked on my server). Those that don't know should
really think about blocking this port from the outside using iptables.
Be sure not to block your lo interface for this port.
~ 2) I've also made it so root can not login via ssh. This was to
circumvent some of the problems with the recent sshd attacks. To block
or not allow root to login, change the /etc/ssh/sshd_config file and add
a line that has 'DenyUsers root'
~ This change does not block the attempt; but, it does block root from
loging in. You can still login as a normal user and do an 'su -' to get
root.
Just a Kink Heads up,
James Kosin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFBRvHNc7lFLjBWKW0RAnPQAJ4nNlcVdmU7qwl7gPBB0mGKVj7NWwCgib9I
NgG0FkZCYG9hJHNKUX9aEi8=
=GJTz
-----END PGP SIGNATURE-----
More information about the fedora-list
mailing list