From owner-freebsd-questions@FreeBSD.ORG  Mon Oct 18 23:42:20 2004
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 752F316A4CE
	for <freebsd-questions@freebsd.org>;
	Mon, 18 Oct 2004 23:42:20 +0000 (GMT)
Received: from outmx018.isp.belgacom.be (outmx018.isp.belgacom.be
	[195.238.2.117])
	by mx1.FreeBSD.org (Postfix) with ESMTP id D986E43D31
	for <freebsd-questions@freebsd.org>;
	Mon, 18 Oct 2004 23:42:19 +0000 (GMT)
	(envelope-from geert@lori.mine.nu)
Received: from outmx018.isp.belgacom.be (localhost [127.0.0.1])
	with ESMTP id i9INgAXS012305
	for <freebsd-questions@freebsd.org>; Tue, 19 Oct 2004 01:42:11 +0200
	(envelope-from <geert@lori.mine.nu>)
Received: from lori.mine.nu (102-77.243.81.adsl.skynet.be [81.243.77.102])
	with ESMTP id i9INg8K5012294;	Tue, 19 Oct 2004 01:42:08 +0200
	(envelope-from <geert@lori.mine.nu>)
Received: by lori.mine.nu (Postfix, from userid 1000)
	id 98BB04E7; Tue, 19 Oct 2004 01:42:07 +0200 (CEST)
Date: Tue, 19 Oct 2004 01:42:07 +0200
From: Geert Hendrickx <geert.hendrickx@ua.ac.be>
To: Murray Taylor <murraytaylor@bytecraftsystems.com>
Message-ID: <20041018234207.GA73558@lori.mine.nu>
References: <20041018055122.GB35360@ns2.wananchi.com>
	<41736A22.7000900@yahoo.com>
	<1098141721.25732.165.camel@wstaylorm.dand06.au.bytecraft.au.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <1098141721.25732.165.camel@wstaylorm.dand06.au.bytecraft.au.com>
User-Agent: Mutt/1.4.2i
X-GPG-Key: http://lori.mine.nu/gnupgkey.asc
X-GPG-Key-ID: 1024D/766C1E92
X-Accept-Language: nl,en
cc: Rob <spamrefuse@yahoo.com>
cc: freebsdquestions <freebsd-questions@freebsd.org>
Subject: Re: Are these attempts by password crackers??
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 18 Oct 2004 23:42:20 -0000

On Tue, Oct 19, 2004 at 09:22:01AM +1000, Murray Taylor wrote:
> The AllowUsers parameter in sshd_config is handy too.
>              ^                 ^
> man sshd_config (5)

The AllowGroups option may be even more handy.  I usually create a group
called ssh, and allow only members of this group to login via ssh.  The
advantage over the AllowUsers option is that you don't have to restart
sshd everytime you add or delete members to or from the ssh group.  

GH

-- 
:wq