On Friday 20 August 2010 10:55, Brunner, Brian T. wrote: > 2: Log-ins through firewall allowed only from approved IPs/MACs > regardless of possession of correct password. One can never guarantee that they will be a at the approved IP/MAC Address when issues arise. For this reason I would use SSH-Keys for access to the machine. I would also move the port to something other then the default port and block 22 at the firewall. After that I would run something like fail2ban and drop any IP Address that fails to log in on the new port should that port be discovered by unauthorized persons. -- Regards Robert Linux The adventure of a life time. Linux User #296285 Get Counted http://counter.li.org/ _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: securing a remotely hosted machine
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: securing a remotely hosted machine
- From: Robert Spangler <mlists@xxxxxxxxxxxxxxxx>
- Date: Sun, 22 Aug 2010 13:04:55 -0400
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <136E6E09F3177445ABF72A56B7F2B88402C46809@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx>
- User-agent: KMail/1.9.4
- Follow-Ups:
- Re: securing a remotely hosted machine
- From: Eero Volotinen
- Re: securing a remotely hosted machine
- References:
- securing a remotely hosted machine
- From: Karanbir Singh
- Re: securing a remotely hosted machine
- From: Brunner, Brian T.
- securing a remotely hosted machine
- Prev by Date: Re: how to check the number of thread on apache server
- Next by Date: Re: rexec error - where are you
- Previous by thread: Re: securing a remotely hosted machine
- Next by thread: Re: securing a remotely hosted machine
- Index(es):
 |