HEADS UP! Watch out for security on your machines and exploits!
Garrett Wollman
wollman at khavrinen.lcs.mit.edu
Wed Dec 3 16:33:01 PST 2003
<<On Wed, 3 Dec 2003 16:24:09 -0800, Peter Losher <Peter_Losher at isc.org> said:
> Also stress password security; the Debian note stated that it all started
> when a non-privileged user's password was sniffed, and compromised.
Indeed, it's a good idea to configure these systems with the following
sshd_config lines:
PasswordAuthentication no
PermitEmptyPasswords no
ChallengeResponseAuthentication no
PAMAuthenticationViaKbdInt no
-GAWollman
More information about the freebsd-hubs
mailing list