Posted by: Anonymous Coward
on March 31, 2007 02:00 AM
None of this is advanced, and none of this hasn't been published before. Come on... how many times do we have to hear the same thing (that's common sense, for crying out loud).
No one should be using protocol 1 unless they absolutely have to. No one should be using passwords with the root account (turn it off or use without-password which is great for rsync over ssh to do privileged backups). This article doesn't even go into the ~/.ssh/authorized_keys file and how you can use the command directive to restrict actions!
If you want something "advanced", check out <a href="http://linsec.ca/Optimizing_OpenSSH" title="linsec.ca">linsec.ca</a linsec.ca>'s ssh article. It's a little old, and could use some updating for things like the new Match directive and stuff, but it's far more advanced than this drivel.
If I was linux.com, I'd be embarrassed to put this one up.
Learn about Linux
Download Linux
Get Linux help
nothing advanced here
Posted by: Anonymous Coward on March 31, 2007 02:00 AMNone of this is advanced, and none of this hasn't been published before. Come on... how many times do we have to hear the same thing (that's common sense, for crying out loud).
No one should be using protocol 1 unless they absolutely have to. No one should be using passwords with the root account (turn it off or use without-password which is great for rsync over ssh to do privileged backups). This article doesn't even go into the ~/.ssh/authorized_keys file and how you can use the command directive to restrict actions!
If you want something "advanced", check out <a href="http://linsec.ca/Optimizing_OpenSSH" title="linsec.ca">linsec.ca</a linsec.ca>'s ssh article. It's a little old, and could use some updating for things like the new Match directive and stuff, but it's far more advanced than this drivel.
If I was linux.com, I'd be embarrassed to put this one up.
#