[NMLUG] SSH bot going around

Subject: [NMLUG] SSH bot going around
From: havoc at harrisdev.com (Jody Harris)
Date: Tue Aug 10 12:19:53 2004
In-reply-to: <Pine.LNX.4.44.0408101201080.24733-100000@swestbrook.org>
References: <Pine.LNX.4.44.0408101201080.24733-100000@swestbrook.org>

Thanks, Steven.

Sometimes I know what I should be doing to make my box more secure, and 
sometimes it takes a nudge (or a kick in the seat) to get me off of zero 
and do it.

jody

Steven Westbrook wrote:
> Hi all.. I was just going through some of my logs and recognized there 
> seems to be a bot or a group of people trying to hack into linux boxes via 
> ssh.  Just a warning... I'd reccomend only allowing in a select few people 
> -- and disabling root access through ssh.  It can be done by going into 
> /etc/ssh/sshd_config and adding a line called AllowUsers and then listing 
> the names for those with few accounts needing access.  There's also a way 
> through pam.d to add a long list of names that if asked I'll look back up.
> 
> 
> -steve
> 
> _______________________________________________
> NMLUG mailing list
> NMLUG@nmlug.org
> http://www.nmlug.org/mailman/listinfo/nmlug
> 

-- 
http://www.RealizationSystems.com/ -- start communicating
http://www.GalacticSlacker.com/ -- read it and weep
http://www.NMPerspective.com/ -- a Southwest Perspective

References:
- [NMLUG] SSH bot going around
  - From: westbrook at swestbrook.org (Steven Westbrook)

Prev by Date: [NMLUG] SSH bot going around
Next by Date: [NMLUG] RHCE/CT Online Pre-Assesment quiz
Index(es):
- Chronological
- Thread

Please send sugestions and comments to webmaster@nmlug.org.