[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Improve sshd
- Subject: Re: [cobalt-security] Improve sshd
- From: Paul Gillingwater <paul@xxxxxxxxxxx>
- Date: Thu, 26 Apr 2001 07:35:54 +0200 (CEST)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Quoting Fred <journal@xxxxxxx>:
> Is there any other option in the sshd config that could be great to
> change in order to improve security ?
Yes. Don't use or allow passwords. Instead, generate a DSA certificate
and use that instead of the password. Make sure the certificate has a
nice long complex passphrase too. There is a SSHd configuration option
that will ignore passwords.
*********************************
Paul Gillingwater
Managing Director
CSO Lanifex Unternehmensberatung
& Softwareentwicklung G.m.b.H.
NEW BUSINESS CONCEPTS
E-mail: paul@xxxxxxxxxxx
Mobile: +43/699/1922 3085
Webhome: http://www.lanifex.com
Address: Praterstrasse 60/1/2
A-1020 Vienna, Austria
*********************************