[olug] wrapping sshd on Debian
Kenton Brede
kbrede at gmail.com
Fri Jan 5 05:47:33 UTC 2007
On 1/4/07, nealr <neal at lists.rauhauser.net> wrote:
>
> I installed something a while back using Debian and I put in our usual
> /etc/hosts.allow which only permits stuff we own. Tonight I was doing a
> little security audit and I find that the box will talk to any ol'
> address via ssh. What does one have to do to make sshd honor
> /etc/hosts.allow on Debian(Knoppix)??? I suppose this is something
> stupid I'll find right after I hit send but for the moment I am
> scratching my head.
A few thoughts:
http://www.snailbook.com/faq/libwrap.auto.html
You could use a firewall on the local machine.
Use the "AllowUsers" or "DenyUsers" in /etc/ssh/sshd_config.
hth,
Kent
--
"It may be true that the law cannot make a man love me, but it can stop him
from lynching me, and I think that's pretty important." - Martin
Luther King Jr.
More information about the OLUG
mailing list