[linux] Re: iptables drop
Paul Slootman
paul+nospam op wurtel.net
Do Apr 21 14:43:25 CEST 2005
On Thu 21 Apr 2005, Jelle Boomstra wrote:
> On Thursday 21 April 2005 01:53, Hugo van der Kooij wrote:
> > Daarnaast is het handig om een expliciete lijst van geldige ssh gebruikers
> > te maken om ongewenste login pogingen verder af te remmen.
>
> Hoe doe je dat? Dat is toch precies wat ssh al doet bij authenticatie?
RTFM (uit sshd_config):
AllowUsers
This keyword can be followed by a list of user name patterns,
separated by spaces. If specified, login is allowed only for
user names that match one of the patterns. '*' and '?' can be
used as wildcards in the patterns. Only user names are valid; a
numerical user ID is not recognized. By default, login is
allowed for all users. If the pattern takes the form USER op HOST
then USER and HOST are separately checked, restricting logins to
particular users from particular hosts.
Paul Slootman
More information about the Linux
mailing list