Repeating the Web's Mistakes (was gemini+submit:// (was Re: Uploading Gemini content))

Matthew Graybosch hello at matthewgraybosch.com
Mon Jun 15 02:31:07 BST 2020

Previous message (by thread): Repeating the Web's Mistakes (was gemini+submit:// (was Re: Uploading Gemini content))
Next message (by thread): Repeating the Web's Mistakes (was gemini+submit:// (was Re: Uploading Gemini content))
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sun, 14 Jun 2020 15:34:08 -0500
jes <j3s at c3f.net> wrote:

> You might also consider that there are a number of drawbacks
> regarding fail2ban, here's the article that I've written on the
> subject:
> 
> https://j3s.sh/thoughts/fail2ban-sucks.txt

Thanks. I just finished reading this, and am now reading the article on
OpenSSH hardening that you linked. I had root login disabled from the
start, so that's a start. :)

I've also seen some forum posts suggesting that I can disable password
authentication for all users by default, and then allow exceptions for
particular users. This might help me harden Tanelorn without making
things harder for less-skilled users who haven't gotten the hang of
generating a ssh key and copying it yet.

-- 
Matthew Graybosch		gemini://starbreaker.org
#include <disclaimer.h>		gemini://demifiend.org
https://matthewgraybosch.com	gemini://tanelorn.city
"Out of order?! Even in the future nothing works."

Previous message (by thread): Repeating the Web's Mistakes (was gemini+submit:// (was Re: Uploading Gemini content))
Next message (by thread): Repeating the Web's Mistakes (was gemini+submit:// (was Re: Uploading Gemini content))
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Gemini mailing list