SSH on FreeBSD
Volodymyr Kostyrko
c.kworr at gmail.com
Tue Jan 15 13:01:30 UTC 2013
15.01.2013 14:48, Frank Staals:
> Volodymyr Kostyrko <c.kworr at gmail.com> writes:
>
>> <snip>
>> In FreeBSD there are two ways of enabling sshd: default, fast and easy through
>> rc.conf and a bit tricky and secure via inetd.conf. Everyone can select their
>> own poison. I personally prefer the latter one.
>
> You seem to imply that enabling sshd through inetd is more secure than
> directly through rc.conf. Care to elaborate on that?
* there's no central process to target with attacks;
* SSHv1 server key is regenerated every time new connection is created;
* with inetd you can force max connections per minute rate or max
connections per ip.
--
Sphinx of black quartz, judge my vow.
More information about the freebsd-questions
mailing list