10-08-2010, 06:36 PM
(10-08-2010, 06:25 PM)virus_in_town Wrote: I have Dedicated server , and its automatically generated mail comes to my mentioned email address while i registered the server. Root login failed attempt
There are some simple steps you can take to secure SSH beyond the default settings. Disabling root login entirely is the best thing I can recommend. I also recommend changing the default port away from 22 to some arbitrary number. Lastly, lower the amount of time the login will be available before timing out and limit the amount of unsuccessful attempts allowed. All of this is easily done in the sshd config file, typically located at:
/etc/ssh/sshd_config
Specifically, the directives you're looking for:
Port 22 - Change the 22 to something different; make sure whatever port you choose it isn't already in use.
PermitRootLogin yes - Change to no.
LoginGraceTime 600 - The amount of time to login in seconds; go as low as 10-30 if you're comfortable with it.
MaxAuthTries 6 - Number of unsuccessful attempts allowed; go as low as you feel comfortable (if you use a password manager or otherwise copy/paste your password from a reliable source, drop this to 1).
Ho, ho, ho! Well, if it isn't fat stinking billy goat Billy Boy in poison!
How art thou, thou globby bottle of cheap, stinking chip oil?
Come and get one in the yarbles, if ya have any yarbles, you eunuch jelly thou!
How art thou, thou globby bottle of cheap, stinking chip oil?
Come and get one in the yarbles, if ya have any yarbles, you eunuch jelly thou!