Koozali.org: home of the SME Server

Legacy Forums => Experienced User Forum => Topic started by: yehaah on January 09, 2006, 03:06:08 PM

Title: Hacked?
Post by: yehaah on January 09, 2006, 03:06:08 PM

Is SME not a secure choice?

I've got problems with logging on to my SME, and in an other thread the posobility of beeing hacked has been given:
http://forums.contribs.org/index.php?topic=30174.msg126292#msg126292

Is it possible for others to go in and change a root password without physical access to the server?

If this is true how secure is this platform?

Title: Hacked?
Post by: byte on January 09, 2006, 03:11:38 PM

SME does what it does out of the Box and is secure.

But as you say you have opened SSH up to whole Internet and if you have not got a Strong password then you will be hacked and if you have not kept up2date with the ssh versions this also would be true.

Search on here on how to secure even more when using SSH set to internet

Title: Hacked?
Post by: byte on January 09, 2006, 03:15:06 PM

For example you may wish to apply this...

http://no.longer.valid/phpwiki/index.php/SecurityFAQ#ssh1