[clug] sshd ListenOnly

Sam Couter sam at couter.dropbear.id.au
Tue Mar 29 10:23:50 GMT 2005

Kim Holburn <kim.holburn at anu.edu.au> wrote:
> If you are going down the road of using other things apart from sshd 
> itself then the best way would be to use iptables, much more secure and 

You forgot "also": the best way would be to use iptables *also*. You
should still enable whatever access controls you have available in each
of the services you run.

Security is best applied in layers, much like ogres.
Sam "Eddie" Couter  |  mailto:sam at couter.dropbear.id.au
Debian Developer    |  mailto:eddie at debian.org
                    |  jabber:sam at teknohaus.dyndns.org
OpenPGP fingerprint:  A46B 9BB5 3148 7BEA 1F05  5BD5 8530 03AE DE89 C75C
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.samba.org/archive/linux/attachments/20050329/fe8ddec7/attachment-0001.bin

More information about the linux mailing list