With my host being public to internet, security now is the most concerning than it ever was.
So, first step, using one time password when login with ssh.
$ sudo apt-get install libpam-otpw
--- /etc/ssh/sshd_config ---
UsePrivilegeSeparation no
ChallengeResponseAuthentication yes
--- /etc/pam.d/sshd ---
#@include common-auth
auth required pam_otpw.so
session optional pam_otpw.so
~ $ optw-gen # Save the output!
$ sudo /etc/init.d/ssh restart
And here is some other tips:
http://www.ibm.com/developerworks/cn/aix/library/au-sshlocks/index.html?ca=drs-
分享到:
相关推荐
A one-time pad system is the only system known that cannot be cracked by others. This system is also called the Vernam-cipher or perfect cipher. A message using this system cannot be broken because ...
Jenkins构建Execute shell script on remote host using ssh命令;JenkinsSSH执行命令;
To log in you must change it using a client that supports expired passwords”这样的错误提示,这表明你的MySQL密码已经过期,需要进行更新才能继续登录数据库。这种情况通常发生在初始化MySQL服务之后,由于未...
《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D ...
In addition, files with "user" password can be recovered in a reasonable time using "key search" attack. Please note that some limitations still apply (see help file for more details about Adobe ...
ERROR 1862 (HY000): Your password has expired. To log in you must change it using a client that supports expired passwords 出现问题原因: 可能是你在安装 MySQL过程中,通过mysqld –initialize 初始化 ...
This program (Advanced RAR Password Recovery, or simply ARPR) can be used to recover the lost password for a RAR archive. At the moment, there is no known method to extract the password from the ...
municate in real time using a peer-to-peer architecture. It is about secure, consent-based, audio/video (and data) peer-to-peer communication between HTML5 browsers. This is a disruptive evolution in ...
Using ISA Server with Exchange 2003.doc
- The program can work with archives containing only one encrypted file (at about the same speed) - Self-extracting archives are supported - The program is customizable: you can set the password ...
SshExec ssh = new SshExec("hostname", "username", "password"); ssh.Connect(); string output = ssh.ExecuteCommand("ls -l"); ssh.Disconnect(); ``` 2. **Renci.SshNet**:这是另一个常用的C# SSH库,它提供...
在Jenkins构建springboot项目自动部署的时候,配置远程执行Dockerfile所在服务器的SSH命令,这里把完整的命令贴出来,详细搭建过程见我的博客《基于Jenkins+Gitlab+Docker实现SpringBoot项目自动部署》
Chess Game using Python with Free Source Code.zip
Simple Minesweeper Game using Python with Free Source Code.zip
var ssh = new SshClient("hostname", username, password); ssh.Connect(); var command = ssh.CreateCommand("ls -l"); var result = command.Execute(); ssh.Disconnect(); ``` **SCP(Secure Copy)** SCP是...
You will begin with a basic RESTful web service in Node.js, using the popular Express.js framework, pre-built and ready to run in your local environment. You will be introduced to the most powerful ...
This book will teach you how to use Storm for real-time data processing and to make your applications highly available with no downtime using Cassandra. The book starts off with the basics of Storm ...
SshExec ssh = new SshExec("hostname", "username", "password"); string result = ssh.ExecuteCommand("ls -l"); Console.WriteLine(result); ssh.Close(); } ``` 这段代码会连接到名为"hostname"的服务器,...
解决 SpringBoot 连接 MySQL 时报错 using password: NO 的方案 在使用 SpringBoot 配置 MySQL 时,可能会出现一个错误:Access denied for user ''@'localhost' (using password: YES) 或者 Access denied for ...
1,Real-Time Embedded Multithreading Using ThreadX and MIPS ...4,eetop.cn_Real-Time.Embedded.Multithreading-Using.ThreadX.and.MIPS 5,(CMP) Real-Time Embedded Multithreading--Using ThreadX & ARM