Quote:
Originally Posted by psypro
If I enable password login for sshd, I get sshguard to block.
|
To my understanding this is not a best practice.
Q: What is the purpose of running sshd(8) with password authentication disabled?
A: Prevent password login.
Q: What are the odds of success of a password authentication attack on sshd() when password authentication is disabled?
A: Zero. There is no chance of success.
Q: What is the purpose of using sshguard?
A: To block attackers.
Q: What is the value of blocking attackers who have a zero chance of success?
A: It keeps them out of my logs. That is the only value.
Q: What is the impact of enabling password authentication?
A: It allows password login.
Q: What are the odds of a successful password authentication attack on sshd() when password authentication is enabled?
A: Greater than zero. There is a chance of success.
Q: What are the odds of a provisioning error in PF or in sshguard? Or a runtime failure of sshguard?
A: Greater than zero. There is a chance of a provisioning error, or of sshguard not running at the time of an attack.