Securing machine from any kind of SSH access

Try to locate the that whether you machine is set to accept all SSH connections under the IPTABLES rules.
# iptables -L INPUT --line-numbers|grep ssh
[will list all the rules applied to the incoming traffic over SSH]
Try to locate the following entry [if it exists in the list shown]
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:ssh
remove the entry as its defined to accept all the incoming traffic over SSH,and this is how to.
Just pick the row number of the entry [the first column,say its 4th],and then list it using
# iptables -L INPUT 4
and then delete it using
# iptables -D INPUT 4
Now to stop SSH to your machine,just fire the following command.
# iptables -A INPUT -p UDP --dport 22 -j REJECT
# iptables -A INPUT -p TCP --dport 22 -j REJECT
Save the rules.
# service iptables save
Restart the service
# service iptables restart
All this could also have been done by just shutting down the SSH service,but the idea was to try hands at IPTABLES

Comments

Post a Comment

Popular posts from this blog

Chrome @ Fedora

Image
Installing Chromium on Fedora isn't really all that much harder than it is on a Debian-based system. But with Fedora you have a couple of different options. You can either install from command line or you can install using the yum package management too. The benefit of installing via yum is that you will be able to update Either way the installation is simple. Let's take a look at the Yum. You have to follow the following steps: Open your vi editor and enter the gain 'root' access. Create the '/etc/yum.repos.d/chromium.repo' file. Add the following contents to the file: [chromium] name=Chromium Test Packages baseurl=http://spot.fedorapeople.org/chromium/F11/ enabled=1 gpgcheck=0 Save the file. Update the yum database using : 'yum update' Finally fire the install : 'yum install chromium -y' Doing this all will install Chromium on your fedora 11 system.Which can be accessed from under Applications -> Internet -> Chromium Web Browser The
Read more

Bash Scripting Cookies

- Passing arguments to a Bash script. `basename $0` in the script will list the name of the script without the path. `dirname $0` in the script will list the absolute path of the script without the name. `$0` will list the full path 'URI' of the script. `$#` will list the count of the arguments passed to the script. `$*` will be listing all the arguments passed to the script. `$1` will be listing the first argument passed to the script. - If conditional statements Condition Meaning [ -a FILE ] True if FILE exists. [ -b FILE ] True if FILE exists and is a block-special file. [ -c FILE ] True if FILE exists and is a character-special file. [ -d FILE ] True if FILE exists and is a directory. [ -e FILE ] True if FILE exists. [ -f FILE ] True if FILE exists and is a regular file. [ -g FILE ] True if FILE exists and its SGID bit is set. [ -h FILE ] True if FILE exists and is a symbolic link. [ -k FILE ] True if FILE exists and its sticky bit is s
Read more

Dock the Appications

Image
The day can be called successful one again as found a application that works with any kind of window managers having being tested with Gnome, KDE, XFCE as mentioned by the developer/s. So considered to give a try. 1. Installation was quick as its just a 95k package. # yum install -y kdocker.i586 2. Using it to Dock. The Docker application was found under Applications > Accessories > KDocker. Selecting the Docker turned my pointer into a kind of stock gun target. Decided to dock thunderbird, hence clicked the mouse on the application window, and it was done. 3. The icon looked a little bad but considering the work done can be acceptable.Here is the screen shot of how the docked thunderbird looked like. 4. Once docked the application can be undocked  by a single click on the docked icon of the application. 5. As seen in the above screen shot there is a terminal also docked along with the thunderbird. Great thanks to the development team.A small info about the appl
Read more