Home page logo
/

basics logo Security Basics mailing list archives

Re: SSH server under attack...
From: Ansgar -59cobalt- Wiechers <bugtraq () planetcobalt net>
Date: Thu, 26 Jan 2006 14:34:41 +0100

On 2006-01-24 Robert Larsen wrote:
I "solved" this problem by disabling password authentication and only 
permitting rsa authentication.
These options in sshd's config file do the trick:
PasswordAuthentication no
RSAAuthentication yes
PubkeyAuthentication yes

RSAAuthentication applies only to protocol 1, which should be disabled
anyway.

Regards
Ansgar
-- 
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

---------------------------------------------------------------------------
EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The Norwich University program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Tailor your education to your own professional goals with degree 
customizations including Emergency Management, Business Continuity Planning, 
Computer Emergency Response Teams, and Digital Investigations. 

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault