[an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive] (none) [an error occurred while processing this directive] [an error occurred while processing this directive] [an error occurred while processing this directive][an error occurred while processing this directive]
 
[an error occurred while processing this directive] [an error occurred while processing this directive]
Skåne Sjælland Linux User Group - http://www.sslug.dk Home   Subscribe   Mail Archive   Forum   Calendar   Search
MhonArc Date: [Date Prev] [Date Index] [Date Next]   Thread: [Date Prev] [Thread Index] [Date Next]   MhonArc
 

Re: [TEKNIK] Regel for SSH i iptables



Verner Kjærsgaard skrev:

- jeg har en iptables firewall, hvori jeg har tilladt at kunne connecte via SSH (port 22). Nu vil jeg gerne snøre posen lidt mere, således at kun 3 bestemte IP'er kan få adgang.

Til det formål bruger jeg blot /etc/ssh/sshd_config :

PermitRootLogin no
AllowUsers joe jane
AllowUsers sslug@sslug sslug@sslug sslug@sslug sslug@sslug

Så bliver min logfil fyldt op med alle mulige der prøver at logge ind som root fra alle mulige steder de ikke kan.

Min list af ip'er der kan logge ind er vel nok 100.000 styks, men det er dog mindre end de 100.000.000 mulige der er på internet.

Og husk, hvis nameserver ikke virker, så kan du ikke komme ind via sslug@sslug

/hans



 
Home   Subscribe   Mail Archive   Index   Calendar   Search

 
 
Questions about the web-pages to <www_admin>. Last modified 2009-04-01, 02:01 CEST [an error occurred while processing this directive]
This page is maintained by [an error occurred while processing this directive]MHonArc [an error occurred while processing this directive] # [an error occurred while processing this directive] *