30 Sep
2016
30 Sep
'16
2:49 a.m.
Hi,
Le 29/09/2016 à 21:10, Rob Janssen a écrit :
Well, the issue is not really the passwords being in plaintext. The issue is the availability of a remote login feature with possibly weak passwords. It affects SSH just as much as it
I usually allow remote access (SSH, RDP, etc...) through VPN only.
When access from Internet is absolutely required (because it's not possible to have a VPN), then I usually add a firewall rule to allow access only from a list of known WAN IP addresses.