SSH Security

wwp subscript at free.fr
Sat Dec 10 22:11:07 UTC 2005


Hello Res,


On Sun, 11 Dec 2005 07:40:49 +1000 (EST) Res <res at ausics.net> wrote:

> On Sat, 10 Dec 2005, wwp wrote:
> 
> >> Key based authentication is the right way to go.  You should disable
> >> root ssh access completely.
> 
> So long as the machine with the kay is also very well protected or it is 
> just as exposed as if it were directly.
> 
> >
> > BTW, is there a way to make ssh allowing root access from a specific
> > interface (local for instance) and denying it from other ones (external)?
> >
> 
> man securetty

Thanks, this is new to me!


Regards,

-- 
wwp




More information about the fedora-list mailing list