2 Mar
2018
2 Mar
'18
8:38 p.m.
On Fri, Mar 02, 2018 at 11:11:06AM +0000, Andy Smith wrote:
[...]
What are the feelings about setting port 22 Xen Shell access to
require SSH public key auth (while leaving 922 to allow password
authentication as well)?
There have been times when I've logged into my VPS late at night from my
mobile phone, a little drunk maybe, and run 'poweroff', thinking that
I'm logged into a local computer. At times like this I've been thankful
of the Xen shell, accessible from my phone.
Yes, I'd probably learn to copy the key.
[...]
At the very least the Fail2Ban ban time is going to have to go up
from 10 minutes to let's say 6 hours.
Could you post the results of this a week after and see if that makes
things good again?
--
Best regards,
Ed http://www.s5h.net/