Server compromissed
Marius Andreiana
malists at epon.ro
Fri Feb 18 20:52:12 UTC 2005
On Fri, 2005-02-18 at 09:51 -0500, Leonard Isham wrote:
> The only way to ensure your system is clean, and likely to remain clean, is to:
>
> 4. Disable root remote login (use su or sudo)
With this, ssh gives different messages when password is correct and
incorrect.
Better solution: use AllowUsers in sshd_config. This gives access only
to selected accounts, instead of all.
--
Marius Andreiana
Epon Business Applications
http://www.epon.ro
More information about the fedora-list
mailing list