Yes, in other ways you can. But not with "PermitRootLogin", which
is what I was responding to.
Yes but it was /my/ point, that you have much finer access control in
configuring sshd than compared to blocking IPs at firewalls, in
xinetd , et al.
That is that there's much finer granularity than just turning off
root for ssh, which is only a partial solution.
If you're concerned about the snipes against root, why wouldn't you
be concerned about the snipes against "admin", and other popularly
attacked accounts. Likewise if you wish to secure root for due
diligence, not permitting direct ssh into privileged accounts, then
you're also missing the mark by half by not also securing any other
privileged accounts, such as those with admin status.
--
-dhan
------------------------------------------------------------------------
Dan Shoop AIM: iWiring
Systems & Networks Architect http://www.iwiring.net/
email@hidden http://www.ustsvs.com/
iWiring provides systems and networks support for Mac OS X, unix, and
Open Source application technologies at affordable rates.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Macos-x-server mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
http://lists.apple.com/mailman/options/macos-x-server/email@hidden
