Why does your Information Technology team tell you not to turn on that Web server, or leave SSH turned on when your not using it? \u00c2\u00a0Because they want you to be secure…<\/p>\n
Here’s a perfect example…<\/p>\n
Mar 30 16:14:06 68 sshd[2933]: Did not receive identification string from 96.10.82.114This user used SSH on the mac for a few days, and then forgot to turn it off.\u00c2\u00a0 We don’t know how long these script kiddies were attacking the system, attempting to guess the password…\u00c2\u00a0 But between the reasonably strong password, and LaunchD automatically throttling back SSHD launches, they never cracked the system.\u00c2\u00a0 But that was partially due to the fact that the user happened to see the attempts in the System Log…<\/p>\n
Please review your System Preferences’s Sharing configuration, and if you are not running a web site turn off “Web Sharing”.\u00c2\u00a0 If you are not using SSH, then please turn off “Remote Login”. And most important of all, if you are not allowing Windows users to login to your system, make sure File Sharing is turned off.<\/p>\n
If you wish to File Share with the other Macintosh systems, and exclude the Windows users… Choose File Sharing.\u00c2\u00a0 Click Options, and make sure “Share Files and Folder using SMB” is turned off.\u00c2\u00a0 And make sure that “Share Files & Folders using FTP” is turned off.\u00c2\u00a0 Unless your running an FTP server, there is no reason for that option to be on (in most cases).<\/p>\n
If you are not sure about any of the other settings, ask your local IT representative for help.\u00c2\u00a0 I’m sure that they would rather take 5 minutes to review security settings, then spend hours cleaning up your system from a script kiddie attack.<\/p>\n","protected":false},"excerpt":{"rendered":"
Why does your Information Technology team tell you not to turn on that Web server, or leave SSH turned on when your not using it? \u00c2\u00a0Because they want you to be secure… Here’s a perfect example… Mar 30 16:14:06 68 sshd[2933]: Did not receive identification string from 96.10.82.114 Mar 30 16:21:57 68 com.apple.SecurityServer[24]: checkpw() returned […]<\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0},"categories":[12,5,25,11],"tags":[78,1838,83],"_links":{"self":[{"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/posts\/618"}],"collection":[{"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/comments?post=618"}],"version-history":[{"count":0,"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/posts\/618\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/media?parent=618"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/categories?post=618"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.schollnick.net\/wordpress\/wp-json\/wp\/v2\/tags?post=618"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}