ssh host

beren43

New Member
Nov 25, 2019
13
0
1
Hi,
I want to protect the ssh server. Configured that you can only log in from one server. And what prevents an attacker from deleting the server and creating their own ip instead and using ssh ? So how do I identify the server that everyone can connect from ?
 

dswartz

Active Member
Jul 14, 2011
529
55
28
1. configure it to only allow ssh using public key. 2. what do you mean by 'deleting the server'?
 

RobstarUSA

Active Member
Sep 15, 2016
166
56
28
Hi,
I want to protect the ssh server. Configured that you can only log in from one server. And what prevents an attacker from deleting the server and creating their own ip instead and using ssh ? So how do I identify the server that everyone can connect from ?
In most Linux distros you can do this with tcp wrappers at least.....although maybe there is a more modern version

man /etc/hosts.allow or /etc/hosts.deny

You can also use a host based firewall like iptables. I also highly reccomend enabling OTP for ssh. You can use libpam-google-authenticator to set this up quickly & easily on linux.