[clug] sshd ListenOnly
Sam Couter
sam at couter.dropbear.id.au
Tue Mar 29 10:23:50 GMT 2005
Kim Holburn <kim.holburn at anu.edu.au> wrote:
> If you are going down the road of using other things apart from sshd
> itself then the best way would be to use iptables, much more secure and
^^^^
You forgot "also": the best way would be to use iptables *also*. You
should still enable whatever access controls you have available in each
of the services you run.
Security is best applied in layers, much like ogres.
--
Sam "Eddie" Couter | mailto:sam at couter.dropbear.id.au
Debian Developer | mailto:eddie at debian.org
| jabber:sam at teknohaus.dyndns.org
OpenPGP fingerprint: A46B 9BB5 3148 7BEA 1F05 5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/linux/attachments/20050329/fe8ddec7/attachment-0001.bin
More information about the linux
mailing list