Re: Cisco PIX with SSH enabled on external port for maintenance
From: John Maher (john.e.maher_at_gmail.com)
Date: 11/15/05
- Previous message: Christopher Carpenter: "FW: Password creating Theories"
- In reply to: Chris Largret: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Next in thread: Alloishus BeauMains: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Reply: Alloishus BeauMains: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 15 Nov 2005 15:49:07 -0500
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Chris Largret wrote:
> If you DO allow access to SSH to the outside world, there are a few
> things you can do to make it more secure:
>
> 1. Use a non-standard port
> 2. Use only the strongest algorithms that SSH supports
> 3. Change the passwords regularly
> 4. Allow only strong passwords
> 5. Limit which IP addresses can connect
If feasible, I would recommend using public key authentication and
disabling password authentication.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (GNU/Linux)
Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org
iD8DBQFDeknDuY7WcSII22oRAqCHAJ0cidbUKqRm4qUKzu/8buP/62haAgCcDJhf
H7mx4DzKwoJz01a/R6gVN+M=
=r+xe
-----END PGP SIGNATURE-----
- Previous message: Christopher Carpenter: "FW: Password creating Theories"
- In reply to: Chris Largret: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Next in thread: Alloishus BeauMains: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Reply: Alloishus BeauMains: "Re: Cisco PIX with SSH enabled on external port for maintenance"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
