Site Map - skip to main content - dyslexic font - mobile - text - print

Hacker Public Radio

Your ideas, projects, opinions - podcasted.

New episodes Monday through Friday.


hpr0465 :: Failsafe security

<< First, < Previous, Latest >>

Host Image
Hosted by Ken Fallon on 2009-10-14 is flagged as Explicit and is released under a CC-BY-NC-SA license.
Listen in ogg, spx, or mp3 format. | Comments (0)

WARNING: It's easy to lock yourself out of a system implementing these changes so make sure you have physical access to the console of the system you are securing. To display all processes listening netstat -anp | grep -i listen Deny all connections to any port from any external IP address /etc/hosts.deny all:all /etc/hosts.allow sshd:192.168.1.54 # My other pc IPTables Tutorial: http://iptables-tutorial.frozentux.net/ A good starting point to block all except ssh: http://www.cyberciti.biz/tips/linux-iptables-4-block-all-incoming-traffic-but-allow-ssh.html Disable root login via ssh: http://www.howtogeek.com/howto/linux/security-tip-disable-root-ssh-login-on-linux/ Setting up ssh keys and disabling password logins. http://www.debuntu.org/ssh-key-based-authentication

Comments

Subscribe to the comments RSS feed.

Leave Comment

Powered by Comment Script