> From: Matthew Gillen <me at mattgillen.net> > To: discuss at blu.org I use the rule that only "user" accounts, not accounts installed by the distribution or software packages can be logged in via ssh. That means that an effective attacker must know *something* about my particular setup to have any hope of logging in. Dale