February 27, 2010 - 9:42 am
Tags: client, client location, connection, encrypted connection, gateway, gateway ports, option, ssh, ssh connection, ssh connections
Posted in .forward, client, gateway, host, port, reverse, ssh, tunnel | No comments
SSH can create forward and reverse tunnels to transmit port data through the encrypted connection. You can create forward tunnels that link the local port of the client machine to the remote port on the server. You can create reverse tunnels that link the remote ports of the server to the local ports on the [...]
February 13, 2010 - 4:39 pm
Tags: c option, Compression, compression quality, connection, internet, slow internet connection, slow internet connections, ssh, ssh sessions, xtightvncviewer
Posted in Compression, quality, speed, ssh, xtightvncviewer | No comments
If you plan to forward X applications via ssh, and are using a very slow internet connection you should definitely use compression. The “-C” option will use compression and will substantially increase the data transfer rate in 100 Kb/s or less internet connections. Also with vnc connection, if you are using xtightvncviewer you can effectively [...]
February 6, 2010 - 9:42 am
Tags: automatic mechanisms, brute force, dictionary, force, legitimate user, login, ssh, timeout, timeouts, user
Posted in brute, force, login, ssh, timeout | 1 comment
SSH login timeouts are not very effective at preventing unauthorized login attempts. Most ssh attacks are scripted attached launched by automatic mechanisms. The scripts most likely will use dictionary based brute force attacks that insert the password very quickly. Setting the login timeout very low will most likely not prevent such scripted attacks, and will [...]
January 24, 2010 - 4:15 pm
Tags: accessible system, ban, login, login attempts, rsa, rsa keys, ssh, ssh ftp, ssh server, System
Posted in Server, fail2ban, login, remote, rsa, security, ssh | No comments
Based on some recent experience do not ever allow password remote login. There are two things you chould apply to your ssh server. Implement a RSA key login, and implement fail2ban. Fail2ban will modify iptables (firewall) to block the ip address of offending attempts to connect. It will do so for your apache, ssh, ftp, [...]
January 23, 2010 - 4:58 pm
Tags: default location, file, key file, login, new id, password, rsa, security breach, ssh, ssh connection
Posted in key, remote, rsa, secure, ssh | No comments
If you are going to be providing technical support, to be professional you should implemented a secure ssh connection. There is no excuse to potentially give terminal access to a password snooper. Using ssh the terminal commands themselves are encrypted, so disabling password login truly minimized risks of a security breach. Using a RSA key [...]
December 22, 2009 - 12:46 pm
Tags: configure, cron, crontab, crontab e, Day, days of the week, Don, military time, month, month of the year, scripts
Posted in cron, crontab | No comments
Crontab is automated. Don’t bother configuring /etc/cron.hourly etc…. Just configure a crontab line and it will propogate to the /etc subdirectories accordingly.
Crontab lines are configured with:
sudo crontab -e
There are five starts in front. The first is minutes the second is hours. Third fourth and fith are for days of the week, day of the month [...]
June 13, 2009 - 2:41 pm
Tags: authentication mechanisms, drive, key, password authentication, public keys, rsa, ssh, ssh connections, System, target, target system, usb
Posted in key, login, private, public, rsa, ssh, usb | No comments
There is no reason to be hassled to enter login usernames and password when accessing a terminal via ssh. SSH has built in rsa key authentication mechanisms. First build the private and public keys:
ssh-keygen
This will create your private and public keys in the .ssh folder in your home folder. You then copy the public key [...]
August 15, 2007 - 3:27 pm
Tags: backup, backup folder, backup script, cron, folder, LAN, local area network, script, server directory, ssh, ssh connection
Posted in Server, backup, cron, scripts | No comments
Update: Don’t configure cron.hourly etc. manually. Configure it with crontab.
I use three scripts that completely backup my entire server. Two scripts I place in my cron.hourly folder, and one I use in my cron.daily. For hourly backup I export all my databases, and then transfer them via an automated ssh connection to another computer on [...]
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=3d636c5f-6390-4670-846a-1ac3fcac0e47)
