iptables in linux

Reindl Harald h.reindl at thelounge.net
Sun Nov 13 01:06:26 UTC 2011



Am 13.11.2011 01:52, schrieb Roger:
> On Sat, 2011-11-12 at 20:37 +0100, Heinz Diehl wrote:
>> On 12.11.2011, Roger wrote: 
>>
>>> Is there a way to limit:
>>> -number of log in attempts to 2, 
>>> -the duration of a log in attempt to 3 seconds or less
>>> -the number of times a username can be tried, prefer it set at 2 and
>>> then not again for 24 hours if it fails.
>> [....]
>>
>> Switch off login with password and root login, and only allow login
>> with RSA key. After that, you can safely ignore the "white noise" :-)
>>
>>   
>  I read about this and am concerned that if my computer dies and I
> replace mb or other components, the RSA key could be different and I
> won't be able to log in with the previous RSA.
> Not understanding the process made me a bit nervous.

your /home/user/.ssh/id_rsa belongs to you and not to the system
this is the only interestig one for login

the host-keys are not relevant and only for verify the host to
protect against man-in-the-middle-attacks and will NEVER be
regenrated nor is it a problem import them on a new machine

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 262 bytes
Desc: OpenPGP digital signature
Url : http://lists.fedoraproject.org/pipermail/users/attachments/20111113/179d2a8a/attachment.bin 


More information about the users mailing list