Subj : Re: Nightmares / Dreams
To   : Gamgee
From : Brian Klauss
Date : Fri Apr 01 2022 21:45:00

-=> Gamgee wrote to Nightfox <=-

 -=> Nightfox wrote to Gamgee <=-

 Ni>   Re: Re: Nightmares / Dreams
 Ni>   By: Gamgee to McDoob on Thu Mar 31 2022 10:46 pm

 Mc>> Sir, I would ask you to refresh your lessons on network
 Mc>> vulnerability. Trust me when I say this: SSH access is root
 Mc>> access, if you do it right.

 Ga> Just to hit on this previous comment by McDoob.... SSH access is root
 Ga> access, if you do it *WRONG*...!  That's even assuming one allows SSH
 Ga> access to the OS, which is not what we're talking about here.

First and foremost, disable root access via sshd_config.  Second, change the
port to something out there and only configure it for a specific range of IPs. 
Finally, set the BBS to respond to port 22.  Whenever I hear people getting
root hacked via an SSH exploit, I cringe.  It's not the exploit, it's
stupidity.


Brian Klauss <-> Dream Master
Caught in a Dream | caughtinadream.com a Synchronet BBS

.... MultiMail, the new multi-platform, multi-format offline reader!
=== MultiMail/Mac v0.52
--- SBBSecho 3.15-Linux
 * Origin: Caught in a Dream - caughtinadream.com (21:3/163)

.