Re: kernel.org status: hints on how to check your machine for intrusion

From: Maarten Lankhorst
Date: Mon Oct 03 2011 - 05:29:11 EST

Next message: Srivatsa S. Bhat: "Re: [RFC PATCH] Allow for stack traces to be printed on serial console"
Previous message: Cousson, Benoit: "Re: [PATCH 26/30] ARM: omap: add board autoselection"
In reply to: Henrique de Moraes Holschuh: "Re: kernel.org status: hints on how to check your machine forintrusion"
Next in thread: Steven Rostedt: "Re: kernel.org status: hints on how to check your machine forintrusion"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 10/01/2011 11:30 PM, Henrique de Moraes Holschuh wrote:
> Hmm, and a last tip:
>
> Always use the "AllowUsers" or "AllowGroups" directive in sshd_config to
> only allow access to whitelisted users/groups and deny to every other user
> (including system ones).
>
Also nice is a dumb iptables filter with the recent match. 2 lines total.
http://www.linux-noob.com/forums/index.php?/topic/1829-ssh-rate-limit-per-ip-new-method/

But denyhosts does blacklisting for sshd automatically. :)
http://denyhosts.sourceforge.net/faq.html

~Maarten
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Srivatsa S. Bhat: "Re: [RFC PATCH] Allow for stack traces to be printed on serial console"
Previous message: Cousson, Benoit: "Re: [PATCH 26/30] ARM: omap: add board autoselection"
In reply to: Henrique de Moraes Holschuh: "Re: kernel.org status: hints on how to check your machine forintrusion"
Next in thread: Steven Rostedt: "Re: kernel.org status: hints on how to check your machine forintrusion"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]