[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: SSH Security



On Wed, 29 Sep 2004, Darryl W. DeLao Jr. wrote:

> How can I tell the SSH server to only allow certain IP's the ability to
> login?

Two options...first, you can work your iptables firewall rules to only 
allow port 22 connections from the IPs you want.

Second, you can work with TCPWrappers /etc/hosts.deny and 
/etc/hosts.allow.

In the /etc/hosts.deny file, add an entry of:

sshd: ALL

In the /etc/hosts.allow file, add entries like:

sshd: xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy (xxx for IP address {range if 
necessary} and yyy for netmasks)
-- 
Mike Burger
http://www.bubbanfriends.org

Visit the Dog Pound II BBS
telnet://dogpound2.citadel.org or http://dogpound2.citadel.org

To be notified of updates to the web site, visit 
http://www.bubbanfriends.org/mailman/listinfo/site-update, or send a 
message to:

site-update-request bubbanfriends org

with a message of: 

subscribe


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]