2 thoughts on “HOWTO: Five steps to a more secure SSH

  1. Hmm… PermitEmptyPasswords doesn’t mean what the author seems to think it means (it just toggles whether you can do password authentication for accounts with an empty password). Indeed, if you think about how the ssh protocol works, there is no way for an ssh server to know whether a key was password protected or not on the client. Given this, it kind of makes me wonder about the rest of the advice in the article.

  2. Christopher:

    Thanks for pointing that out. Certainly a very large error on my part. I have corrected the HOWTO, so it should be better now. Hopefully the other information is still helpful.

    If you see anything else that is incorrect, please let me know. 🙂

    Thanks again,
    John

Leave a Reply

Your email address will not be published.