wiki:TipAndDoc/network/ssh

Version 6 (modified by mitty, 10 years ago) (diff)

--

  • known_hostsから特定のhostのフィンガープリントを削除
    • ssh-keygen -R "hostname"

disable certain users to login with ssh

  • /etc/pam.d/sshd
    @@ -15,7 +15,7 @@
    
     # Uncomment and edit /etc/security/access.conf if you need to set complex
     # access limits that are hard to express in sshd_config.
    -# account  required     pam_access.so
    +account  required     pam_access.so
    
     # Standard Un*x authorization.
     @include common-account
    
  • /etc/security/access.conf
    -:USERNAME:ALL
    

avoid sshd brute force