[sllug-members]: How does one properly implement OpenSSH?

Nathan Lane nathamberlane at gmail.com
Tue Mar 25 10:15:27 MST 2008 

Very true @ "Windows machines usually have bigger vulnerabilities than ssh
to worry about" - thankfully I have invested in a good hardware
firewall/router with port blocking, WEP security for wifi, and such.

On Tue, Mar 25, 2008 at 10:17 AM, Matt Warnock <
mwarnock at ridgecrestherbals.com> wrote:

> Came late to the thread, I should have read ahead before replying-- but
> there are packages that help with brute force attacks better than just
> changing ports, though that is an option too.  Good discussion.
>
> In my experience, windows machines usually have bigger vulnerabilities
> than ssh to worry about.
> -
> Matt Warnock, President
> RidgeCrest Herbals, Inc.
>
>
> On Tue, 2008-03-25 at 09:54 -0600, Matt Warnock wrote:
> > OpenSSH is pretty easy to implement, apt-get install or yum install
> > usually does it.  You can use RSA or DSA keys, if you need that, or you
> > can just use passwords.  You can change the port if you want, but it may
> > just complicate your life.  Make sure all your accounts have good
> > passwords instead, and run a package like SSHDFilter or something
> > similar to block repeated brute-force attacks.   If you know you will
> > only log in from one machine (like your laptop) you can set up RSA or
> > DSA keys and disable passwords entirely.
> > -
> > Matt Warnock, President
> > RidgeCrest Herbals, Inc.
> >
> >
> > On Tue, 2008-03-25 at 08:20 -0600, Nathan Lane wrote:
> > > How does one properly implement OpenSSH? Do you need RSA keys? Should
> > > I change the port number on which SSH accepts connections? How do I
> > > set up users? THe answers to these questions and any other questions
> > > you foresee me asking would be very helpful.  I have read the
> > > documentation, but it seems very abstract (too many if you want
> > > this...), I just need some concrete steps.
> > >
> > > --
> > > Nathan Lane
> > > Home, http://www.nathandelane.com
> > > ______________________________________________________________________
> > > See http://www.sllug.org/ for latest SLLUG news, information, links.
> > > Join SLLUG and other UT LUG members on irc.FreeNode.net channel #Utah
> > > sllug-members at sllug.org
> > > http://www.sllug.org/cgi-bin/mailman/listinfo/sllug-members
> >
> > ______________________________________________________________________
> > See http://www.sllug.org/ for latest SLLUG news, information, links.
> > Join SLLUG and other UT LUG members on irc.FreeNode.net channel #Utah
> > sllug-members at sllug.org
> > http://www.sllug.org/cgi-bin/mailman/listinfo/sllug-members
>
> ______________________________________________________________________
> See http://www.sllug.org/ for latest SLLUG news, information, links.
> Join SLLUG and other UT LUG members on irc.FreeNode.net channel #Utah
> sllug-members at sllug.org
> http://www.sllug.org/cgi-bin/mailman/listinfo/sllug-members
>



-- 
Nathan Lane
Home, http://www.nathandelane.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://sllug.org/pipermail/sllug-members/attachments/20080325/7eb956a5/attachment.htm

More information about the sllug-members mailing list