Security

Kiril Nesenko kiril at redhat.com
Wed Oct 9 13:44:17 UTC 2013


I did this for all jenkins slaves on rackspace* servers.

So +1 for the idea.

- Kiril

----- Original Message -----
> From: "Ewoud Kohl van Wijngaarden" <ewoud+ovirt at kohlvanwijngaarden.nl>
> To: infra at ovirt.org
> Sent: Wednesday, October 9, 2013 12:18:02 PM
> Subject: Re: Security
> 
> On Wed, Oct 09, 2013 at 10:41:36AM +0200, Vinzenz Feenstra wrote:
> > I see again quite a lot of "POSSIBLE BREAK-IN ATTEMPT" alerts lately
> > mainly originating from *hichina.com
> >
> > Could you guys please address this? Thanks
> 
> What do you think of disabling SSH passwords and use just SSH keys?
> Fairly easy to roll out using puppet and thanks to puppet we also have
> most of our keys installed. It will mean that we might need to install
> some more keys for a few people and it may not stop the possible break
> in attempts in the logs (because those are because of incorrect forward
> + reverse DNS), but should make it more secure.
> _______________________________________________
> Infra mailing list
> Infra at ovirt.org
> http://lists.ovirt.org/mailman/listinfo/infra
> 



More information about the Infra mailing list