[Ach] SSH improvements

Tobias Millauer is131015 at fhstp.ac.at
Sun Nov 17 11:44:16 CET 2013

Hello everybody,

Here are some improvements to the SSH section. Do you agree with it?

-- 8.3 SSH --

# Use only Protocol 2
Protocol 2

# Disable empty passwords
PermitEmptyPasswords no

# Disable unused authentication methods
UsePAM no
IgnoreRhosts yes
RhostsRSAAuthentication no
HostbasedAuthentication no
KerberosAuthentication no
GSSAPIAuthentication no
ChallengeResponseAuthentication no

-- References --

*) Do not use Protocol V1 
*) "Speed up SSH logon by disabling GSSAPIAuthentication" 

P.S.: https://bettercrypto.org/ points to lo-res.org :-)


More information about the Ach mailing list