Rocking the blogosphere
Apple Online Store

10/29/2006

HOWTO: Five steps to a more secure SSH

October 29th 2006 Posted to Open source, Software, UNIX

Good advice for making ssh more secure, like disabling root logins, requring keys with passphrases, and using DenyHosts.

HOWTO: Five steps to a more secure SSH

Popularity: 2% [?]

Del.icio.us Digg Reddit Technorati

Possibly related posts

Comments

  1. Christopher Smith
    October 30th, 2006 | 12:31 am

    Hmm… PermitEmptyPasswords doesn’t mean what the author seems to think it means (it just toggles whether you can do password authentication for accounts with an empty password). Indeed, if you think about how the ssh protocol works, there is no way for an ssh server to know whether a key was password protected or not on the client. Given this, it kind of makes me wonder about the rest of the advice in the article.

  2. John
    October 30th, 2006 | 2:54 pm

    Christopher:

    Thanks for pointing that out. Certainly a very large error on my part. I have corrected the HOWTO, so it should be better now. Hopefully the other information is still helpful.

    If you see anything else that is incorrect, please let me know. :)

    Thanks again,
    John

Leave a reply

Apple Online Store
Apple Online Store