LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 12-26-2006, 04:47 AM   #16
punjabipredator
Member
 
Registered: Dec 2006
Posts: 30

Original Poster
Rep: Reputation: 15
Thank You


I would like to Thank Everyone that helped me out with this issue we did manage to resolve it as i mentioned before by using TCP Wrapper by allowing only my ip range in SSH and it has fixed the problem since i have not recieved any issues now with SSH.
 
Old 12-26-2006, 09:19 PM   #17
chort
Senior Member
 
Registered: Jul 2003
Location: Silicon Valley, USA
Distribution: OpenBSD 4.6, OS X 10.6.2, CentOS 4 & 5
Posts: 3,660

Rep: Reputation: 76
Quote:
Originally Posted by punjabipredator
I asked my support about putty before you mentioned it because i heard from somewhere that it can generate they key and they said the following to me

The key can be generated on a system with Openssh running as you have to use the ssh -keygen to generate the key.You may use a linux machine with Openssh running in it.The key generation cannot be done in putty
That support person is ignorant. The puttygen program can create public & private keys and you can just copy & paste the output from the top of the window into your Linux box, since it's OpenSSH format (PuTTY does not save it's files in OpenSSH format, but when you generate a key it shows you the OpenSSH public key output).

Note that the putty.exe program does not generate keys, it's the puttygen.exe program. If you only downloaded putty.exe instead of the full installer, then you do not have puttygen.exe.
 
Old 12-26-2006, 10:07 PM   #18
punjabipredator
Member
 
Registered: Dec 2006
Posts: 30

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by chort
That support person is ignorant. The puttygen program can create public & private keys and you can just copy & paste the output from the top of the window into your Linux box, since it's OpenSSH format (PuTTY does not save it's files in OpenSSH format, but when you generate a key it shows you the OpenSSH public key output).

Note that the putty.exe program does not generate keys, it's the puttygen.exe program. If you only downloaded putty.exe instead of the full installer, then you do not have puttygen.exe.
I will try it out when i have alot of spare time. Thank You Chort.

The attacks have stopped with the ip range on the SSH i noticed i did get any users trying to break into my server today.

Last edited by punjabipredator; 12-26-2006 at 10:12 PM.
 
Old 12-30-2006, 02:55 AM   #19
sysconfig
Member
 
Registered: Sep 2006
Location: (.)
Posts: 44

Rep: Reputation: 15
I am not sure but below mentioned URL should help in securing and configuration of SSH in RHEL

http://forums.linuxwebadmin.info/ind...pic,136.0.html

Thanks,

Mitul Savani
 
Old 12-30-2006, 03:09 AM   #20
jschiwal
LQ Guru
 
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733

Rep: Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682Reputation: 682
You can also install cygwin/x on your windows machine. Then you can use ssh-keygen, and ssh itself to connect to a remote server. You could also use "ssh -X" to be able to run a gui program remotely, but read up on security first. I don't think the udp packets will travel through the tunnel.

Last edited by jschiwal; 12-31-2006 at 02:00 AM.
 
Old 01-01-2007, 07:45 PM   #21
sundialsvcs
LQ Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 10,887
Blog Entries: 4

Rep: Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997Reputation: 3997
There is only one way to "secure" SSH ... digital certificates.

You can't use "username/password" at all.
 
Old 01-04-2007, 09:19 AM   #22
stickman
Senior Member
 
Registered: Sep 2002
Location: Nashville, TN
Posts: 1,552

Rep: Reputation: 53
Quote:
Originally Posted by punjabipredator
The key can be generated on a system with Openssh running as you have to use the ssh -keygen to generate the key.You may use a linux machine with Openssh running in it.The key generation cannot be done in putty.
Create the key with puttygen. Putty will show you the key to paste into your authorized_keys file.

As far as securing SSH access:
- Limit client sources if possible
- Limit accounts that can login
- Force key authentication to eliminate brute force attacks
- Throttle incoming connections
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How Secure is SSH? AvatarofVirgo Linux - Security 8 08-14-2011 12:37 PM
LXer: University of Michigan Selects SSH Tectia for Secure System Administration and Secure File Transfers LXer Syndicated Linux News 0 04-25-2006 12:54 AM
Make SSH more secure namit Linux - Security 5 02-10-2006 09:51 PM
Secure x-forwarding over SSH postrational Linux - Networking 1 02-01-2005 11:04 AM
how to secure ssh chongluo Linux - Security 3 11-04-2004 07:16 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 02:13 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration