From owner-freebsd-questions@FreeBSD.ORG Sun May 22 13:37:28 2005 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 96BA616A41C for ; Sun, 22 May 2005 13:37:28 +0000 (GMT) (envelope-from albi@scii.nl) Received: from mail.eyfa.org (eyfa.demon.nl [212.238.155.89]) by mx1.FreeBSD.org (Postfix) with ESMTP id 419F843D48 for ; Sun, 22 May 2005 13:37:27 +0000 (GMT) (envelope-from albi@scii.nl) Received: from mail.eyfa.org (unknown [192.168.1.47]) by mail.eyfa.org (Postfix) with ESMTP id 8F4E83D1D6D; Sun, 22 May 2005 15:38:15 +0200 (CEST) Received: by mail.eyfa.org (Postfix, from userid 80) id 5BCFA3D1D0E; Sun, 22 May 2005 15:38:15 +0200 (CEST) Received: from 82.197.199.160 (SquirrelMail authenticated user albi) by mail.eyfa.org with HTTP; Sun, 22 May 2005 15:38:15 +0200 (CEST) Message-ID: <32933.82.197.199.160.1116769095.squirrel@mail.eyfa.org> In-Reply-To: References: Date: Sun, 22 May 2005 15:38:15 +0200 (CEST) From: "albi" To: "John DeStefano" User-Agent: SquirrelMail/1.4.4 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-AV-Checked: ClamAV using ClamSMTP Cc: freebsd-questions@freebsd.org Subject: Re: securing SSH, FBSD systems X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 May 2005 13:37:28 -0000 > Would someone mind briefly talking about securing FBSD systems from > such attacks, at least in a manner that's a bit more extensive and > detailed than just saying "use Snort"? I'm not a newbie to FBSD, but > I'm not a *NIX guru either. I'd really appreciate your help. my approach is to use AllowUsers in the sshd_config, and since quite a while i'm using sudo to do "root-tasks", and having a disabled root-passwd entry