Lock Down IP Addresses – SSH and Else

If you know the IP addresses that will be connecting to your machine, lock them down. Use the hosts.allow file as follows.

sshd : localhost : allow sshd : 192.168.3. : allow sshd : 192.168.1. : allow sshd : ALL : deny

Using sshd : ALL : deny and listing various allow rules blocks everything other than the allowed rules. Therefore using sshd : IP : allow you will be able to connect to the machine from that IP only and everything else will be rejected. This procedure will substantially increase the security of the server.

Tags: 192, ALL, everything, hosts, ip addresses, machine, sshd, use

This entry was posted by nseidm1 on January 26, 2010 at 12:07 pm, and is filled under Server, deny, ip, rule, ssh. Follow any responses to this post through RSS 2.0. You can leave a response or trackback from your own site.

Related Posts
Comments (0)

No comments yet.

No trackbacks yet.

VirtualBox Manager Pro – Machine Status Check Plus More

May 26, 2010 - 12:36 pm

Tags: apache mysql, check, host, information, machine, new menu, Plus, random users, ui thread, virtual machines
Posted in Manager, machines, oncreate, pro, ui, virtual, virtualbox | No comments

Added to VirtualBox Pro is status checking. When you login to the host your virtual machines are displayed with on/off information. In the onCreate a thread is launched that scans the server for machine status; it then updates the UI thread accordingly. I’ve also added header icons to replace the default one, and a new [...]

VirtualBox Manager Pro – Public Key Authentication

May 18, 2010 - 9:38 am

Tags: application, encrypted authentication, encrypted login, encryption key, host, host machines, machine, Manager Pro, Manager. The, Manger, virtualbox
Posted in Android, Manager, bit, dsa, encrypt, market, pro, virtualbox | No comments

VirtualBox Manger was released a couple of days ago offering ssh access to remote host machines. The application controls up to seven virtual machines on the host machine. Up to seven different host machines can be configured in VirtualBox Manager. The standard application was released for free, and it will remain free. The current version [...]

VirtualBox Manager – Version 44MPG

May 17, 2010 - 9:22 am

Tags: bug, cleanup, code, code cleanup, header images, input data, keyboards, machine, page, stable release
Posted in Manager, code, oncreate, rsa, virtualbox | No comments

VirtualBox Manager was released two days ago and several updates have been published since then. I have fixed a bug on the delete hosts page Enhanced the header images on the delete hosts page and machine page Tweaked the keyboards in the input data menus Added references to the host as well as the machine [...]

VirtualBox Manager – Whats Next?

May 16, 2010 - 2:32 pm

Tags: application, control menu, host, host control, level application, machine, menu, mininum, relevant servers, service
Posted in Apache, Manager, Mysql, Sendmail, Server, machine, password, virtual, virtualbox | No comments

There is a small bug on the delete hosts page that will be fixed. I’m going to keep the max number of hosts, at this time, to 7 to support smaller screens without having to rewrite the code to support multiple pages of hosts. I’m going to add, at mininum, an additional class where I [...]

Ubuntu Flash

April 12, 2010 - 1:42 pm

Tags: animations, bit, flash, gnash, older versions, open source versions, sudo, swfdec, ubuntu, use
Posted in flash, nonfree, plugin, ubuntu | No comments

To install flash in Ubuntu use: sudo apt-get install flashplugin-nonfree This works on Ubuntu 32bit and 64bit. Flash is slightly unreliable on 64bit Ubuntu, but it works nonetheless. You can also install two open source versions of flash that have limited to good support. Gnash supports most older versions of swf animations, and newer versions [...]

Remote Server Management in Local Facility – LTSP

February 13, 2010 - 9:26 am

Tags: boot sequence, dhcp, dhcp servers, domain default, local ip, ltsp, machine, Server, server option, sudo
Posted in Server, inet, ltsp, tftp | No comments

I’m using LTSP to manage a server remotely in a local facility. I setup an LTSP server on the host machine, and will place it in an air-conditioned room to preserve longevity. I configured a machine, of much lower power, to PXE boot from the server. There are several nuances to setting up an LTSP [...]

Detecting a Security Breach – Ubuntu and Linux Machine

January 25, 2010 - 12:46 pm

Tags: active processes, attempt, linux machine, login, login attempts, machine, password, root, security breech, ssh access
Posted in access, backup, breech, detect, linux, login, root, security, ubuntu | 3 comments

Detecting a security breech is sometimes as easy as logging into the machine, using ssh, and viewing the last login attempt from a completely unrecognized ip address or domain. Subsequently check your auth.log file, in /var/log, for login attempts. If you see countless failed login attempts you have been the victim of a brute from [...]

Extended VirtualBox Management – VBoxTool

December 9, 2009 - 10:13 am

Tags: Boot, command line tool, machine, script, script package, VBoxManage, VBoxTool, virtual machines, virtualbox, wrapper script
Posted in Boot, VBoxManage, VBoxTool, virtualbox | No comments

VBoxManage, the command line tool of VirtualBox, does its job. It also has its limitations. You can starts, pause, and save virtual machines, but there is no integrated way to automate various processes. To have a virtual machine boot with the host, in headless mode, you would have to create a custom init.d boot script. [...]

Using vi, or nano – Terminal Text Editors

December 6, 2009 - 9:40 am

Tags: command mode, graphical editors, graphical text editor, grub, mode, nano, Press, text, unix and linux, use, vi, wq
Posted in command, nano, terminal, text, vi | 1 comment

Vi was the original terminal based text editor created for Unix. It is as small and as simple as it gets. The binary resides within the Unix and Linux bins, and can easily be placed on a removable media for ultimate emergency portability. There are three modes to vi: 1. command mode 2. ex mode [...]

Terminal Standard Output – Slowwwww Down

December 5, 2009 - 12:50 pm

Tags: grep, nvidia, nvidia drivers, page, space bar, use, way
Posted in less, output, standard, terminal | No comments

Have you ever hit an ls and it prints way to much? Have you ever hit a ps and its prints way too much? There are several things you can do. You can pipe it to a grep filter. If your search a downloads folder for NVIDIA drivers do: ls | grep NVIDIA You can [...]