SSH/Telnet Check

[robocap]

hi dear
i install csf and config them
but score 57/68*

for exapmle say that
1-Check SSHv1 is disabled
2-Check /tmp is mounted as a filesystem
3-Check /var/tmp is mounted noexec,nosuid
4-Check /etc/named.conf for recursion restrictions
5-Check SSHv1 is disabled
6-Check SSH on non-standard port
7-Check SSH PasswordAuthentication
8-Check root forwarder
9-Check exim for extended logging
10-Check apache for mod_evasive
11-Check phpsuexec

do you have learn in about csf?
thanks
please help me

 

[robocap]

help about csf

hi dear.
please help me.
thank

 

[Infopro]

At the bottom of page below your score click the button that says "Run again and display comments" That should get you started. Google should help with the rest. Good luck.

 

[robocap]

Hi dear.
i can changes securet server Your Score: 60/68*


but i have very problem

You should disable SSHv1 by editing /etc/ssh/sshd_config and setting:
Protocol 2


and


You might want to consider moving SSH to a non-standard port to avoid basic SSH port scans by editing /etc/ssh/sshd_config and setting:
Port nnnn
Where nnnn is a port of your choosing. Don't forget to open the port in the firewall first!


and


For ultimate SSH security, you might want to consider disabling PasswordAuthentication and only allow access using PubkeyAuthentication. For more information read this article and this article


.
i can underestand them.,
do you can help me?

Thank You

Bye

 

[SoftDux]

where do I find out more about this script, and how to use it?

 

[Infopro]

http://www.configserver.com/cp/csf.html

 

[SoftDux]

Thank you