openssh concerns
Darren Reed
avalon at coombs.anu.edu.au
Sat Oct 17 22:56:24 UTC 2009
If this hasn't been mentioned already, disable password logins
in sshd_config and require RSA authentication only.
I do this on all hosts I administer that are internet accessible
and it allows me to confidently ignore all of the password
guessing attacks, resulting in peace of mind.
Darren
RSAAuthentication yes
PubkeyAuthentication yes
PasswordAuthentication no
ChallengeResponseAuthentication no
More information about the freebsd-security
mailing list