2 Mar
2018
2 Mar
'18
3:10 p.m.
On Fri, Mar 02, 2018 at 11:11:06AM +0000, Andy Smith wrote:
What are the feelings about setting port 22 Xen Shell
access to
require SSH public key auth (while leaving 922 to allow password
authentication as well)?
Do those of you who've added SSH keys want an option to *require*
SSH keys even on port 922?
At the very least the Fail2Ban ban time is going to have to go up
from 10 minutes to let's say 6 hours.
I only access the xen shell from one or two machines with the keys, so
personally I'd be all in favour of requiring auth, and probably
generally in favour of restrictions.
Michael