<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
David Whyte wrote:
<blockquote cite="mid5df8077004121516091f0ad8bd@mail.gmail.com"
type="cite">
<pre wrap="">Very interested to hear some knowledgable users comments on this.
I am behind a NAT router, have a dynamix IP but will use dynDNS, and I
have port 80 blocked by ISP. I plan to open SSH and a port for HTTP
(1010 or 1080) so I can use MythWeb when out of the house. I will
obvisouly change my crappy root password when I get to opening the
ports..
Cheers,
Whytey
</pre>
</blockquote>
Hi, I have two different Fedora Core 2 systems connected to the
internet full-time. I run logwatch and began noticing that my servers
were both being scanned daily. It looked like they were using some sort
of dictionary attack script, because I saw repeated login failures for
common userid's, including root. Fortunately, I did not have a weak
root password or my systems would have been hacked.<br>
<br>
To thwart the attempts, I changed my sshd configuration to not allow
ssh via passwords at all. To do so, edit /etc/ssh/sshd_config and add
the line "PasswordAuthentication no". Doing so will require that you
access your system via ssh using public/private keys.<br>
<br>
You can generate the public/private keys with openssh or puttygen,
whichever you prefer.<br>
<br>
Hope that helps.<br>
<br>
--<br>
jthomps<br>
<br>
<blockquote cite="mid5df8077004121516091f0ad8bd@mail.gmail.com"
type="cite">
<pre wrap="">On Wed, 15 Dec 2004 16:16:14 -0500, Craig Partin <a class="moz-txt-link-rfc2396E" href="mailto:cpartin@gmail.com"><cpartin@gmail.com></a> wrote:
</pre>
<blockquote type="cite">
<pre wrap="">After reading the post about the poor soul who's box was rooted, it
got me to worrying about my own. Right now I feel pretty safe with
the box behind a NAT hardware firewall. I do want to open some ports
for SSH and HTTP connections and wonder what security considerations I
might be missing.
The myth user is logged in with sudo passwordless renice access.
Services are run as root and the frontend and X are setuid root. It's
a basic gentoo install with no additional security related tweaking.
openSSH, MySQL, and Apache2 are the only network daemons running.
What security measures do others have in place?
Thanks,
Craig
_______________________________________________
mythtv-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:mythtv-users@mythtv.org">mythtv-users@mythtv.org</a>
<a class="moz-txt-link-freetext" href="http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users">http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users</a>
</pre>
</blockquote>
<pre wrap=""><!---->
</pre>
<pre wrap="">
<hr size="4" width="90%">
_______________________________________________
mythtv-users mailing list
<a class="moz-txt-link-abbreviated" href="mailto:mythtv-users@mythtv.org">mythtv-users@mythtv.org</a>
<a class="moz-txt-link-freetext" href="http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users">http://mythtv.org/cgi-bin/mailman/listinfo/mythtv-users</a>
</pre>
</blockquote>
</body>
</html>