30 Sep
2016
30 Sep
'16
2:49 a.m.
Hi,
Le 29/09/2016 à 21:10, Rob Janssen a écrit :
Well, the issue is not really the passwords being in
plaintext. The
issue is the availability
of a remote login feature with possibly weak passwords. It affects
SSH just as much as it
I usually allow remote access (SSH, RDP, etc...) through VPN only.
When access from Internet is absolutely required (because it's not
possible to have a VPN), then I usually add a firewall rule to allow
access only from a list of known WAN IP addresses.