Secure Shell
a GOOD idea to harden OpenSSH! Mar 30 2011 07:19PM
nagygabor88 (nagygabor88 zoho com) (3 replies)
RE: a GOOD idea to harden OpenSSH! Mar 31 2011 07:39PM
Ward, Jon (Jon_Ward syntelinc com) (1 replies)
Re: a GOOD idea to harden OpenSSH! Apr 02 2011 10:37PM
Eric Jaw (naisanza gmail com)
Re: a GOOD idea to harden OpenSSH! Mar 31 2011 06:24PM
Joseph Spenner (joseph85750 yahoo com) (1 replies)
Re: a GOOD idea to harden OpenSSH! Apr 03 2011 07:17PM
Lamont Granquist (lamont scriptkiddie org) (1 replies)
Re: a GOOD idea to harden OpenSSH! Apr 06 2011 03:30AM
Mike Ramirez (gufymike gmail com)
Re: a GOOD idea to harden OpenSSH! Mar 31 2011 06:20PM
Christian Grunfeld (christian grunfeld gmail com) (1 replies)
Re: a GOOD idea to harden OpenSSH! Apr 02 2011 11:57AM
Aaron Toponce (aaron toponce gmail com)
On Thu, Mar 31, 2011 at 03:20:38PM -0300, Christian Grunfeld wrote:
> This will not disturb a normal human login with a couple failures but
> makes a robot to wait with a potential law.

That really isn't the job of OpenSSH, but more for PAM or some other
authentication module. Further, there is already software to prevent robots
from getting into your server, such as Netfilter, TCPWrappers and
Denyhosts.

Interesting idea, but something like delaying logins really belongs
elsewhere in the system.

--
. o . o . o . . o o . . . o .
. . o . o o o . o . o o . . o
o o o . o . . o o o o . o o o
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: http://tinyurl.com/aarongpg

iQEcBAEBCgAGBQJNlw8ZAAoJEM55Ebf8BAiPlbsH/2ENWQcld/Eud2dZZIi+573h
vR3yswKgydGgd0C47rYncXZEMdjLC2ZXiVFvFilf8FtGr9Q6ys49FEkGZmAkDxJ9
YT+KydY580aDB8eC4s5BmAOQ+fFo8d5kuCE4QFBNaJE3ji+cu+zo/J6nYbmCLlSq
K+Ep0qqu84GfZ/qg0pPGKm6pa5EeEJRyh0UK7GCjdeMWZ9nBkPYAABbloX/tS4UB
ueHOptcHCbfESnorBJ+FzacXER5qwiLCURB3KZqeeUksYoomBZtwUPY1/fOTIZB5
87I+8M40mgkq5wOdnX9ysRS3AxWcsFFFI9cEzdXBg58pjNhwUazgmW2sXVFxm0g=
=Vvg4
-----END PGP SIGNATURE-----

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus