With my host being public to internet, security now is the most concerning than it ever was.
So, first step, using one time password when login with ssh.
$ sudo apt-get install libpam-otpw
--- /etc/ssh/sshd_config ---
UsePrivilegeSeparation no
ChallengeResponseAuthentication yes
--- /etc/pam.d/sshd ---
#@include common-auth
auth required pam_otpw.so
session optional pam_otpw.so
~ $ optw-gen # Save the output!
$ sudo /etc/init.d/ssh restart
And here is some other tips:
http://www.ibm.com/developerworks/cn/aix/library/au-sshlocks/index.html?ca=drs-
分享到:
相关推荐
Using the SSH/telnet console A tutorial for UltraEdit/UEStudio's SSH/telent feature Adding a wordfile Adding a wordfile in UltraEdit v15.00 and greater Adding a wordfile (in v14.20 and earlier) Add a ...
Using HTTPLoris is simple. In its most basic form, HTTPLoris merely needs a copy of Python 2.6. ...Optionally, one may set a username and password for the SOCKS proxy using these two flags.
Use One Time Passwords Section 34. Restrict Logins Chapter 4. Backing Up Introduction Section 35. Back Up FreeBSD with SMBFS Section 36. Create Portable POSIX Archives Section...
but the time when loss first occurs will be different from one experiment to the next due to the randomness in the emission process. 22. Five generic tasks are error control, flow control, ...
Committers fall into three groups: committers who are only concerned with one area of the project (for instance file systems), committers who are involved only with one sub-project and committers who ...
only to choose password with a minimum length of 6, containing a least one letter and one number, etc. use the tool pw-inspector which comes along with the hydra package to reduce the password list...