06-30-2013
Anything open to access is part of the attack surface and can be attacked though whether this allows a successful hack is another matter.
The only way to secure a server is consider attacks and what you can do to prevent them.
In your case, you may have strong passwords, but are you going to know if someone tries your root account 506938 times with a brute force attack until they happen to find your password? Does your version of openssh have any security vulnerabilities that are remotely vulnerable? If you give someone else access, how do you know that they are changing things appropriately and not introducing vulnerabilities?
5 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi friends,
I am currently working on an issue where i should write a program which utilizes Cpu as specified by the user. The function should be provided with an argument ( how much percentage of CPU has to be utilized by the process ) for example CPU(75) should utilize 75% of CPU. The function... (11 Replies)
Discussion started by: nerdychandru
11 Replies
2. Solaris
hi all,
what i want to do
when user open terminal like tty5 and do his work
i want to see his terminal
how can i do this (1 Reply)
Discussion started by: xxmasrawy
1 Replies
3. IP Networking
hello,
can anyone suggest how to delay the incoming packets ??
or how the packets are prossed inside the kernal and a way to make the packets wait a while??
it wud be vry helpful
regards
sameer (7 Replies)
Discussion started by: sameer kulkarni
7 Replies
4. Red Hat
HI,
I have a Centos linux box and there is interface connect to internet.
I stop the iptables in this box .
After a few day , I find the linux box have been hacked and install some perl script into the box .
Could anyone tell me how the hacker can login into the centos box without knowing... (1 Reply)
Discussion started by: chuikingman
1 Replies
5. Homework & Coursework Questions
Hi my name is Manju.
->I have configure the two way authentication on my linux server.
->Now I am able to apply two way authenticator on particuler user.
->Now I want to map this linux server to my AD server.
->Kindly tell me how to map AD(Active Directory) with this linux server.
... (2 Replies)
Discussion started by: manjusharma128
2 Replies
LEARN ABOUT CENTOS
pwmake
PWMAKE(1) General Commands Manual PWMAKE(1)
NAME
pwmake - simple tool for generating random relatively easily pronounceable passwords
SYNOPSIS
pwmake <entropy-bits>
DESCRIPTION
pwmake is a simple configurable tool for generating random and relatively easily pronounceable passwords. The tool allows you to specify
the number of entropy bits that are used to generate the password.
The entropy is pulled from /dev/urandom.
The minimum number of bits is 56 which is usable for passwords on systems/services where brute force attacks are of very limited rate of
tries. The 64 bits should be adequate for applications where the attacker does not have direct access to the password hash file. For situ-
ations where the attacker might obtain the direct access to the password hash or the password is used as an encryption key 80 to 128 bits
should be used depending on your level of paranoia.
OPTIONS
The first and only argument is the number of bits of entropy used to generate the password.
FILES
/etc/security/pwquality.conf - The configuration file for the libpwquality library.
RETURN CODES
pwmake returns 0 on success, non zero on error.
SEE ALSO
pwscore(1), pam_pwquality(8)
AUTHORS
Tomas Mraz <tmraz@redhat.com>
Red Hat, Inc. 10 Nov 2011 PWMAKE(1)