Tukang Nggame Linux: SSH and Denyhosts Security with Linux Debian

Tukang nggamer write this tips/tutorial for SEO Contest with keyword tukang nggame. I hope tukangnggame to be a winner as tukang nggamer for nggame.

tukang nggame Linux -If your Linux router run ssh service or the other service. And You will yoursef to access it. You can secure your GNU/Linux Debian router from everyone. How do it ? Simple.
Stop root user to remote your Linux router.
Edit /etc/ssh/sshd_config

PermitRootLogin no

Restart ssh services

#/etc/init.d/ssh restart
Restarting OpenBSD Secure Shell server: sshd.

And install denyhosts aplication

apt-get install denyhosts

Then edit /etc/denyhosts.conf

# DENY_THRESHOLD_INVALID: block each host after the number of failed login.
# attempts has exceeded this value. This value applies to invalid
# user login attempts (eg. non-existent user accounts)
#
DENY_THRESHOLD_INVALID = 5
#
##########################################################
# DENY_THRESHOLD_VALID: block each host after the number of failed.
# login attempts has exceeded this value. This value applies to valid
# user login attempts (eg. user accounts that exist in /etc/passwd) except
# for the "root" user
#
DENY_THRESHOLD_VALID = 10
#
##########################################################
#
# DENY_THRESHOLD_ROOT: block each host after the number of failed.
# login attempts has exceeded this value. This value applies to.
# "root" user login attempts only.
#
DENY_THRESHOLD_ROOT = 1
#
##########################################################
#
# DENY_THRESHOLD_RESTRICTED: block each host after the number of failed.
# login attempts has exceeded this value. This value applies to.
# usernames that appear in the WORK_DIR/restricted-usernames file only.
#
DENY_THRESHOLD_RESTRICTED = 1

# To block all services for the offending host:
#BLOCK_SERVICE = ALL
# To block only sshd:
BLOCK_SERVICE = sshd

#Email will report if there someone failed login
ADMIN_EMAIL = aris@nggames.com
SMTP_HOST = mail.nggames.com
SMTP_PORT = 25

SMTP_FROM = DenyHosts denyhosts-report@nggames.com
# SMTP_SUBJECT: you can specify the "Subject:" of messages sent
# by DenyHosts when it reports thwarted abuse attempts
SMTP_SUBJECT = DenyHosts Report

You can edit the other as you like. Then restart denyhosts services

# /etc/init.d/denyhosts restart
Restarting DenyHosts (warning).
Stopping DenyHosts: denyhosts.
Starting DenyHosts: denyhosts.

If the are user failed login as rule (DENY_THRESHOLD_INVALID), IP Address that user automate added in /etc/hosts.deny

example screenshoot:

sshd: 222.215.119.33
sshd: 203.158.221.21

But if we choice BLOCK_SERVICE = ALL

all: 222.215.119.33
all: 203.158.221.21

If your special IP (exp : 10.11.1.1 ) will not block at every time, add in /etc/hosts.allow

sshd:10.11.1.1

Bingo! Tukang Nggame congrate to you.

Share this post :

Prev article : The Winner by tukang nggame