Disabling ssh password authentication
Brute force password guess attacks generally runs against ssh server. You can allow only known ip addresses to connect ssh port with iptables but sometimes it is not the best way; you may want to login from everywhere.
In order to keep connected from everywhere while protecting system itself against brute force attacks, you can disable password based authentication in ssh and still continue to connect with public key authentication (See also: Passwordless ssh setup). To do this, change or add following line in /etc/ssh/sshd_config and restart ssh server:
PasswordAuthentication no
- 0 Comment
- Murat Demirten
- 10 Jul 2008, 11:01
-
You must be login first or sign-up for an account to post comments.
USERBOX
CATEGORIES
MOST READ TODAY
- Disabling reverse dns lookups in ssh
- Enabling remote desktop on a VirtualBox Machine
- Rewriting destination ip address
- Recursively mput with smbclient
- Routing packets back from incoming interface
- Remove all frozen messages from exim mail queue
- Exim and hostname fqdn problem
- How to extract a deb package without installing
- Syntax highlighting in less
- Booting from an ISO image using qemu
LAST ADDED
- Using iPhone internet sharing over bluetooth under Linux
- Using USB sound card with amarok
- Multi-conditional search and replace (clearing a ftp trojan script example)
- Disabling ipv6 functionality
- How to convert a mp3 file
- How to choose the fastest Debian mirror
- Disabling reverse dns lookups in ssh
- Rewriting destination ip address
- Deleting A File By It's Inode Value
- Learning which libraries are used for a binary
