pierre.frenkiel at laposte.net
Tue Jan 13 10:26:22 UTC 2009
On Mon, 12 Jan 2009, Kent Borg wrote:
> Protect ssh with the following:
> 1. If using passwords, use long, quality passwords--passwords that are
> *not* recycled elsewhere.
> 2. If using keys, protect your private keys *very* carefully.
> 3. If offering accounts to others, worry that they also follow #1 and #2.
an other good protection is to add a from field in authorized_keys, to allow
connections only from from listed hosts:
from="127.0.0.1,192.168.1.*,..." ssh-dss ...
More information about the ubuntu-users