With my host being public to internet, security now is the most concerning than it ever was.
So, first step, using one time password when login with ssh.
$ sudo apt-get install libpam-otpw
--- /etc/ssh/sshd_config ---
UsePrivilegeSeparation no
ChallengeResponseAuthentication yes
--- /etc/pam.d/sshd ---
#@include common-auth
auth required pam_otpw.so
session optional pam_otpw.so
~ $ optw-gen # Save the output!
$ sudo /etc/init.d/ssh restart
And here is some other tips:
http://www.ibm.com/developerworks/cn/aix/library/au-sshlocks/index.html?ca=drs-
分享到:
相关推荐
A one-time pad system is the only system known that cannot be cracked by others. This system is also called the Vernam-cipher or perfect cipher. A message using this system cannot be broken because ...
Jenkins构建Execute shell script on remote host using ssh命令;JenkinsSSH执行命令;
To log in you must change it using a client that supports expired passwords”这样的错误提示,这表明你的MySQL密码已经过期,需要进行更新才能继续登录数据库。这种情况通常发生在初始化MySQL服务之后,由于未...
《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D Terrain Engines Using C++ And DirectX 9 》.rar《Real-Time 3D ...
In addition, files with "user" password can be recovered in a reasonable time using "key search" attack. Please note that some limitations still apply (see help file for more details about Adobe ...
ERROR 1862 (HY000): Your password has expired. To log in you must change it using a client that supports expired passwords 出现问题原因: 可能是你在安装 MySQL过程中,通过mysqld –initialize 初始化 ...
This program (Advanced RAR Password Recovery, or simply ARPR) can be used to recover the lost password for a RAR archive. At the moment, there is no known method to extract the password from the ...
municate in real time using a peer-to-peer architecture. It is about secure, consent-based, audio/video (and data) peer-to-peer communication between HTML5 browsers. This is a disruptive evolution in ...
Using ISA Server with Exchange 2003.doc
- The program can work with archives containing only one encrypted file (at about the same speed) - Self-extracting archives are supported - The program is customizable: you can set the password ...
SshExec ssh = new SshExec("hostname", "username", "password"); ssh.Connect(); string output = ssh.ExecuteCommand("ls -l"); ssh.Disconnect(); ``` 2. **Renci.SshNet**:这是另一个常用的C# SSH库,它提供...
在Jenkins构建springboot项目自动部署的时候,配置远程执行Dockerfile所在服务器的SSH命令,这里把完整的命令贴出来,详细搭建过程见我的博客《基于Jenkins+Gitlab+Docker实现SpringBoot项目自动部署》
Chess Game using Python with Free Source Code.zip
Simple Minesweeper Game using Python with Free Source Code.zip
SshExec ssh = new SshExec("hostname", "username", "password"); string result = ssh.ExecuteCommand("ls -l"); Console.WriteLine(result); ssh.Close(); } ``` 这段代码会连接到名为"hostname"的服务器,...
var ssh = new SshClient("hostname", username, password); ssh.Connect(); var command = ssh.CreateCommand("ls -l"); var result = command.Execute(); ssh.Disconnect(); ``` **SCP(Secure Copy)** SCP是...
You will begin with a basic RESTful web service in Node.js, using the popular Express.js framework, pre-built and ready to run in your local environment. You will be introduced to the most powerful ...
This book will teach you how to use Storm for real-time data processing and to make your applications highly available with no downtime using Cassandra. The book starts off with the basics of Storm ...
解决 SpringBoot 连接 MySQL 时报错 using password: NO 的方案 在使用 SpringBoot 配置 MySQL 时,可能会出现一个错误:Access denied for user ''@'localhost' (using password: YES) 或者 Access denied for ...
1,Real-Time Embedded Multithreading Using ThreadX and MIPS ...4,eetop.cn_Real-Time.Embedded.Multithreading-Using.ThreadX.and.MIPS 5,(CMP) Real-Time Embedded Multithreading--Using ThreadX & ARM