[BlueOnyx:15098] Re: Securing against invading spammers
Brian M
toomanyhandles at gmail.com
Sun Apr 6 14:17:29 -05 2014
If I read this right: if we as admin users use (or users use) a BlueOnyx
userID for ssh and ssh-tunnel port-forwarding at this time: we'll have to
make the modifications /etc/ssh_config you mention in an earlier email.
And these same changes will be needed for any users created outside of the
BlueOnyx UI before ssh tunnels will work as expected.
Thank you;
Brian.
On Sun, Apr 6, 2014 at 2:10 PM, Michael Stauber <mstauber at blueonyx.it>wrote:
> Hi George,
>
> > I recommend everyone read the following:
> >
> > <http://www.rackaid.com/blog/spam-ssh-tunnel/>
>
> Many thanks for the link and the detailed write-up.
>
> I just published updated base-ssh RPMs for all BlueOnyx versions. Upon
> installing the updates sshd_config will be modified and both
> 'AllowTcpForwarding' and 'X11Forwarding' (just to be sure) will be set
> to off.
>
> Upon that change SSHd is restarted, too, so that the changes take effect
> immediately.
>
> This update will not cause any issues if you already have the safer
> settings configured.
>
> --
> With best regards
>
> Michael Stauber
> _______________________________________________
> Blueonyx mailing list
> Blueonyx at mail.blueonyx.it
> http://mail.blueonyx.it/mailman/listinfo/blueonyx
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.blueonyx.it/pipermail/blueonyx/attachments/20140406/4597000d/attachment.html>
More information about the Blueonyx
mailing list