[LRUG] Dedicated servers in the UK?
Paul Battley
pbattley at gmail.com
Tue Jul 3 08:53:49 PDT 2012
On 3 July 2012 12:51, John Arundel <john at bitfieldconsulting.com> wrote:
> There are three simple and very effective measures you can take to increase the security of your servers, all in the SSHd config file:
>
> * Disable root logins ('PermitRootLogin no')
> * Disable password authentication ('PasswordAuthentication no')
> * Allow only named users to log in ('AllowUsers alice bob')
You might also need to set
UsePAM no
as PAM will otherwise merrily authenticate by password even if you've
set 'PasswordAuthentication no'. At least,that's my experience.
Paul.
More information about the Chat
mailing list