RE: Allowing remote root login seems to be bad. Why?
- From: philip <philip@xxxxxxxxxxxxx>
- Date: Wed, 4 Jun 2008 20:08:15 +0100 (BST)
Date: Tue, 3 Jun 2008 11:47:26 -0400
From: David Bruce <dbruce@xxxxxxxxxxxxx>
To: secureshell@xxxxxxxxxxxxxxxxx
Subject: RE: Allowing remote root login seems to be bad. Why?
If I can add my 2 cents, I recommend also changing the ssh port. It
cuts down on a lot of hack attempts.
From my own experience this is well worthwhile.
Before I changed the ssh port on my server I used to have 2-3 dictionary
attacks a day with several hundred to several thousand attempts per
attack.
The system was 'safe' since I only allowed one login name (with a 'good'
password) but the growing log files were getting irritating.
Now the only login attempts I get are my own.
TTFN,
Philip Riebold, p.riebold@xxxxxxxxx /"\
Media Services \ /
University College London X ASCII Ribbon Campaign
Windeyer Building, 46 Cleveland Street / \ Against HTML Mail
London, W1T 4JF
+44 (0)20 7679 9259 (switchboard), 09259 (internal)
- References:
- RE: Allowing remote root login seems to be bad. Why?
- From: David Bruce
- RE: Allowing remote root login seems to be bad. Why?
- Prev by Date: Re: Allowing remote root login seems to be bad. Why? (SUMMARY)
- Next by Date: Re: Allowing remote root login seems to be bad. Why? (SUMMARY)
- Previous by thread: Re: Allowing remote root login seems to be bad. Why?
- Next by thread: OpenSSH 5.0p1 ignoring --without-openssl-header-check
- Index(es):
Relevant Pages
|
