[NTLUG:Discuss] Recommendation for "Log File Analysis" and firewall updater Software/system/program
Jack Snodgrass
jack at jacksnodgrass.com
Sat Dec 11 07:44:26 CST 2004
On Sat, 2004-12-11 at 00:55 -0600, David Simmons, PE wrote:
> Subject line say's it all...I keep noticing multiple ssh login failures
> (which are not me) and while I feel good about my passwords - I know
> it's just a matter of time!? Want something that auto-magically analyzes
> the logs to secure the system.
>
> Thanks in advance - dave
>
I think someone else mentioned it, but I'll re-emphasize it...
use /etc/hosts.allow /etc/hosts.deny to limit access to
your IP Address or a range of IP Addresses.
Also set up your ssh keys between your boxes and
turn off ssh passwords in your /etc/ssh config file:
# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication no
this way, the user won't even get a chace to try and 'guess' a
password.
--
Jack Snodgrass <jack at jacksnodgrass.com>
More information about the Discuss
mailing list