Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Leaving a door open?

from [SandEr] Network Security [Permanent Link]
Subject: Re: Leaving a door open?
Date: Sun, 29 May 2005 09:03:29 +0200 
Emmanuel Goldstein wrote:


Hi!

My ISP gives me a static Ip and I was thinking about leaving the SSH
port open so I can access my computer from anywhere since i always
have it switched on.

I have a linux box that is integrated in my home Lan, and a router
with firewall capabilities.

Is this secure??? Note that my admin password is really hard to guess,
so im not concerned about bruteforce attacks.

Should I map ports so instead of opening 22 I access through (eg) 'ssh
-p 7623'. That way is not that obvious i have an open ssh port is, it?

Any other security issues i should be concerned about?
Is this a good idea?
Is it better to just set up an ftp server?


Thanks for your help. Cheers. Bye.

 


If you are looking for a way to transfer files and no need to perform 
remote administration you could take a look at this

http://cr.yp.to/publicfile.html

If the files you want to be available are sensitive in some manner you
could also take a look at this

http://www.sublimation.org/scponly/

Furthermore i do agree on your vision "Security through obscurity"

And if you do wish to run a ssh server make sure it is configured with
"security minded" options
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Leaving a door open?, Emmanuel Goldstein
Next by Date:  RE: Checking when the OS was first installed, Lubrano di Ciccone, Christophe (DEF)
Previous by Thread:  Re: Leaving a door open?, Emmanuel Goldstein
Next by Thread:  Re: Leaving a door open?, Nobody Special
Indexes:  [Date] [Thread] [Top] [All Lists]