Another quick question...
As some may know I'm re-sitting my RHCE Exam on Friday and I'm going through some studying to make sure I've got it all nailed.
My query is regarding the securing of SSH Connections. I know there are many ways to secure connections from SSH, so I'll list the few I know... but my question is, what is known as the best? I know that Redhat does not really mind how you do something as long as the outcome is what they require, so again this question is by no means exam related.. it's actually more for me. If I were to do this with my servers what would be best..
I know that we can;
- Create custom IPTABLE rules allowing SSH only from a certain source
- Edit the ssshd_config file and add a network to 'AllUsers'
- Set hosts.deny to ALL:ALL and then add ssh: x.x.x.x to hosts.allow
- Add ALL:ALL to hosts.allow and then restrict a certain network by adding sshd : x.x.x.x to deny a certain address
So there are a few ways of achieving the same or similar task.. but which is the industry standard *best practice* way of doing it?