[Ach] SSH improvements
Tobias Millauer
is131015 at fhstp.ac.at
Sun Nov 17 11:44:16 CET 2013
Hello everybody,
Here are some improvements to the SSH section. Do you agree with it?
-- 8.3 SSH --
# Use only Protocol 2
Protocol 2
# Disable empty passwords
PermitEmptyPasswords no
# Disable unused authentication methods
UsePAM no
IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no
KerberosAuthentication no
GSSAPIAuthentication no
ChallengeResponseAuthentication no
-- References --
*) Do not use Protocol V1
(http://www.ssh.com/manuals/server-admin/44/Configuring_ssh2_for_ssh1_Compatibility.html)
*) "Speed up SSH logon by disabling GSSAPIAuthentication"
(https://coderwall.com/p/fukoew)
P.S.: https://bettercrypto.org/ points to lo-res.org :-)
Tobias
More information about the Ach
mailing list