From owner-freebsd-isp Mon Jul 29 6:24:35 2002 Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D6B7E37B400 for ; Mon, 29 Jul 2002 06:24:30 -0700 (PDT) Received: from mail.ecotech.com.lr (mail.liberiaonline.com.lr [64.110.100.164]) by mx1.FreeBSD.org (Postfix) with SMTP id 0C68B43E67 for ; Mon, 29 Jul 2002 06:24:27 -0700 (PDT) (envelope-from max@ecotech.com.lr) Received: (qmail 2055 invoked by uid 85); 29 Jul 2002 13:22:35 -0000 Received: from unknown (HELO wireless) (64.110.100.167) by mail.liberiaonline.com.lr with SMTP; 29 Jul 2002 13:22:33 -0000 Message-ID: <00a401c23702$efca73c0$04ef10ac@wireless> From: "Max" To: "Joe White" , References: <003f01c23702$84a5dd00$0a800a0a@edgehosting.com> Subject: Re: SSHD Lockdown Date: Mon, 29 Jul 2002 14:22:06 +0100 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_00A1_01C2370B.50FF45F0" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 X-Virus-Scanned: by AMaViS perl-11 Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org This is a multi-part message in MIME format. ------=_NextPart_000_00A1_01C2370B.50FF45F0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Joe, tcpwrappers should be able to pull off that effect, easily i must add! Max ----- Original Message -----=20 From: Joe White=20 To: freebsd-isp@FreeBSD.ORG=20 Sent: Monday, July 29, 2002 2:19 PM Subject: SSHD Lockdown I'm looking for the best way to secure SSHD. I'm creating a new = server, where only 2 other boxes should be able to access via SSH, and I = was wondering what the best way to allow those 2, and only those 2 boxes = to access it. Anything outside of SSHD daemon that could also help? I'm = going to implement tcpwrappers as well, but not packet filtering = software (ipfw / ipf). Any suggestions would be greatly appreciated. =20 Cheers! Joe White Edge Networking Solutions http://www.edgenetworkingsolutions.com jwhite@EdgeNetworkingSolutions.com 248.561.2827 ------=_NextPart_000_00A1_01C2370B.50FF45F0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

Joe,

tcpwrappers should be able to pull off = that effect,=20 easily i must add!

Max

----- Original Message -----
From:=20 Joe = White=20
To: freebsd-isp@FreeBSD.ORG =

Sent: Monday, July 29, 2002 = 2:19 PM

Subject: SSHD Lockdown

I'm looking for the best way to = secure=20 SSHD. I'm creating a new server, where only 2 other boxes should = be able=20 to access via SSH, and I was wondering what the best way to allow = those 2, and=20 only those 2 boxes to access it. Anything outside of SSHD daemon = that=20 could also help? I'm going to implement tcpwrappers as well, but not = packet=20 filtering software (ipfw / ipf). Any suggestions would be = greatly=20 appreciated.

Cheers!

Joe White
Edge Networking = Solutions
http://www.edgenetworking= solutions.com
jwhite@EdgeNetworkingS= olutions.com
248.561.2827

------=_NextPart_000_00A1_01C2370B.50FF45F0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message