Server compromissed

Marius Andreiana malists at
Fri Feb 18 20:52:12 UTC 2005

On Fri, 2005-02-18 at 09:51 -0500, Leonard Isham wrote:
> The only way to ensure your system is clean, and likely to remain clean, is to:
> 4. Disable root remote login (use su or sudo)
With this, ssh gives different messages when password is correct and
Better solution: use AllowUsers in sshd_config. This gives access only
to selected accounts, instead of all. 

Marius Andreiana
Epon Business Applications

More information about the users mailing list