LinuxSA Mailing list archives

  From: Toby Corkindale <tjcorkin@sa.pracom.com.au>
  To  : Matthew Western <mwestern@affairs.net.au>
  Date: Fri, 30 Nov 2001 15:36:45 +1030 (CST)

Re: SSH Security??

Hi,

You can do it in many ways ;)

/etc/ssh/sshd_config is one, or if its compiled to use it, you can also use
tcpwrappers (eg. hosts.allow & hosts.deny).

As well, you can use iptables (or ipchains, ipfwadm, etc) to do it, by only
allowing connections to the ssh port via certain interfaces.

my preference is towards iptables, since this is pushing the barrier the
closest to the data entry point.

Toby

On Fri, 30 Nov 2001, Matthew Western wrote:

> Hi People,
> I have a linux machine with two Network Cards.  One on the inside and one on
> the outside.  how do i make SSH listen on just the inside card?  Couldn't
> find where it is...  err, also do you think this is a silly idea?  or is SSH
> secure as ever and can't be hacked?
> Matthew
>
>

-- 
 Toby Corkindale
 UNIX Developer, Core Tech R&D
 Technology SA, Pracom Ltd
 288 Glen Osmond Road
 Fullarton,	5063
 South Australia
 Tel: +61 8 8202 9075
 Fax: +61 8 8202 9001
 mailto:Toby.Corkindale@sa.pracom.com.au
 http://www.sa.pracom.com.au/

                  PRIVILEGED - PRIVATE AND CONFIDENTIAL

   Privileged/Confidential Information may be contained in this message.
   If you are not the addressee indicated in this message, you may not
   copy or deliver this message to anyone.  In such case, you should
   destroy this message and notify the sender by reply email. Opinions,
   conclusions and other information in this message that do not relate
   to the official business of this organisation shall be understood as
   neither given nor endorsed by it.

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject