[Asterisk-Users] Re: asterisk@home scary log
Geoff Scott
geoff.scott.mail at gmail.com
Thu Feb 10 12:18:37 MST 2005
On Thu, 10 Feb 2005 11:36:36 -0500, Julio Arruda
<jarruda-asterisk at jarruda.com> wrote:
>
> One good step is to 'test' your public IPs against any mistake/hole like
> this.
> I've used http://www.ordb.org in the past for this purpose, others for
> sure are available.
> I would assume is a valuable feedback to provide to the folks from
> asterisk at home, to have a more "conservative" configuration in their
> default install.
>
So, to summarize:
Change SSH from port 22 to a high port (>1024)
Disallow remote root logins.
Disallow password logins
Use key logins.
Geoff
--
I have some G-Mail invites.
Let me know if you want one.
More information about the asterisk-users
mailing list