For a couple of distros AFAICT, that IS the default -- with some sort of firewall, whether it be iptables or firewalld, installed and activated right out of the box. As far as password bangers, well, I always find denyhosts to be an INVALUABLE tool and always make it a part of ANY Linux build that I set up. -----Original Message----- From: centos-bounces@xxxxxxxxxx [mailto:centos-bounces@xxxxxxxxxx] On Behalf Of Nathan Duehr Sent: Thursday, July 30, 2015 4:24 PM To: CentOS mailing list <centos@xxxxxxxxxx> Subject: Re: Fedora change that will probably affect RHEL > On Jul 30, 2015, at 12:20, Warren Young <wyml@xxxxxxxxxxx> wrote: > > Meanwhile over here in CentOS land, you still see SSH password guessers banging on every public IP that responds to port 22. Why? Because it still occasionally works. Increase the password strength minima, and this class of worm, too, will quickly die out. If the Windows fix was firewall on by default, why isn’t that the appropriate “fix" for Linux distros? Why mess with the password strength or which daemons are running? Seems like it adds the necessary step of “STOP: If you turn off this, you’d better know what you’re doing”, without messing around with default settings of packages and/or password library configuration files. _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: Fedora change that will probably affect RHEL
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- Subject: Re: Fedora change that will probably affect RHEL
- From: Robert Wolfe <Robert.Wolfe@xxxxxxxxx>
- Date: Fri, 31 Jul 2015 09:43:17 -0500
- Accept-language: en-US
- Acceptlanguage: en-US
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <8F8C190A-67B8-45C8-B010-E2A08C1D7186@me.com>
- Thread-index: AdDLHjfGSpkTDYboT+CNAVsHc5VDWgAgMtaw
- Thread-topic: Fedora change that will probably affect RHEL
- References:
- Re: Fedora change that will probably affect RHEL
- From: Scott Robbins
- Re: Fedora change that will probably affect RHEL
- From: Chris Murphy
- Re: Fedora change that will probably affect RHEL
- From: Bob Marcan
- Re: Fedora change that will probably affect RHEL
- From: Warren Young
- Re: Fedora change that will probably affect RHEL
- From: Nathan Duehr
- Re: Fedora change that will probably affect RHEL
- From: Warren Young
- Re: Fedora change that will probably affect RHEL
- From: Chris Murphy
- Re: Fedora change that will probably affect RHEL
- From: Warren Young
- Re: Fedora change that will probably affect RHEL
- From: Chris Murphy
- Re: Fedora change that will probably affect RHEL
- From: Warren Young
- Re: Fedora change that will probably affect RHEL
- From: Chris Murphy
- Re: Fedora change that will probably affect RHEL
- From: Warren Young
- Re: Fedora change that will probably affect RHEL
- From: Nathan Duehr
- Re: Fedora change that will probably affect RHEL
- Prev by Date: Re: Fedora change that will probably affect RHEL
- Next by Date: Re: Fedora change that will probably affect RHEL
- Previous by thread: Re: Fedora change that will probably affect RHEL
- Next by thread: Re: Fedora change that will probably affect RHEL
- Index(es):
 |