Linux Security: ssh keygen

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • satya61229
    New Member
    • Feb 2007
    • 24
    #1

    Linux Security: ssh keygen

    Someone is accessing my system.
    Dump from ~/.ssh/known_hosts
    192.168.0.88 ssh-rsa
    192.168.0.92 ssh-rsa
    192.168.0.101 ssh-rsa
    192.168.0.78 ssh-rsa
    192.168.0.60 ssh-rsa
    192.168.0.91 ssh-rsa
    192.168.0.108 ssh-rsa
    192.168.0.112 ssh-rsa
    192.168.0.246 ssh-rsa
    satya ssh-rsa

    Is it wrong. My system name is satya. but I come to know that same username can be used. other is 192... so it can be used for local net. Is that required also?

    And tell about "satya ssh-rsa".

    Please comment.

    I have added ALL:ALL in hosts.deny file. I think it is enough for denying ssh connection. But still I am in trouble. And where is the log for ssh-rsa connection.
    Thanks you.
    Tags: None
    • Motoma
      Recognized Expert Specialist
      • Jan 2007
      • 3236
      #2
      This is not people accessing your system, it is you accessing other systems.

      Your known hosts file is a list of servers that you have connected to. Whenever you connect to a new server, you get a message about whether or not you want to add it to the list. Responding yes places it in the known_hosts file.

        Comment

        • satya61229
          New Member
          • Feb 2007
          • 24
          #3
          Originally posted by Motoma
          This is not people accessing your system, it is you accessing other systems.

          Your known hosts file is a list of servers that you have connected to. Whenever you connect to a new server, you get a message about whether or not you want to add it to the list. Responding yes places it in the known_hosts file.
          Oh! Really.
          Very important info for me.
          Probabbly it is the host for testing server etc.

          I have added ALL:ALL to my hosts.deny and in /log/secure file it show something like this:
          Code:
          Mar 30 20:35:28 satya sshd[1731]: Received signal 15; terminating.
Mar 31 11:59:00 satya sshd[1735]: Server listening on :: port 22.
Mar 31 11:59:00 satya sshd[1735]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
Mar 31 12:05:38 satya sshd[1735]: Received signal 15; terminating.
Mar 31 12:06:48 satya sshd[1728]: Server listening on :: port 22.
Mar 31 12:06:48 satya sshd[1728]: error: Bind to port 22 on 0.0.0.0 failed: Address already in use.
          And it looks no one is able to connect to my system.

            Comment

            Previous template Next
            Working...