[LRUG] Dedicated servers in the UK?

Paul Battley pbattley at gmail.com
Tue Jul 3 08:53:49 PDT 2012


On 3 July 2012 12:51, John Arundel <john at bitfieldconsulting.com> wrote:
> There are three simple and very effective measures you can take to increase the security of your servers, all in the SSHd config file:
>
> * Disable root logins ('PermitRootLogin no')
> * Disable password authentication ('PasswordAuthentication no')
> * Allow only named users to log in ('AllowUsers alice bob')

You might also need to set

UsePAM no

as PAM will otherwise merrily authenticate by password even if you've
set 'PasswordAuthentication no'. At least,that's my experience.

Paul.



More information about the Chat mailing list