Posts tagged internet
SSH X Forwarding with Compression
Feb 13th
If you plan to forward X applications via ssh, and are using a very slow internet connection you should definitely use compression. The “-C” option will use compression and will substantially increase the data transfer rate in 100 Kb/s or less internet connections. Also with vnc connection, if you are using xtightvncviewer you can effectively decrease the quality of the desktop, which is proportionally increase performance. For more information about xtightvncviewer check here:
http://www.bgevolution.com/blog/vnc-compression-quality-the-works/
You’d be surprised at what you can get accomplished on slow internet connections using the tips above.
Related articles by Zemanta
- Keep SSH Sessions Active, Or Reconnect? (ask.slashdot.org)
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=c7055344-07cd-4293-9015-9d8e0f21e4bd)
Sshd_config Settings Rundown
Feb 3rd
- Image via Wikipedia
First change the port you are using. Do not use port 22 on servers that have internet connectivity. This is the first port that will be checked by countless robots searching the internet for vulnerabilities. Change the port to whatever, and then use the -p option in your ssh login attemt. Then make sure root login is disabled, remove the pound symbol from the front of the option line. If you can you should definitely allow rsa key login. Once you get your encryption key setup disable password login by setting the respective line to “no”. If you cannot enable keyed logins for any reason what soever, you should enabled ip based restrictions either by iptables or by tcp wrappers. Iptables is configured with the iptables command, and the tcp wrappers are configured in /etc/hosts.allow. You can reduce the time limit for password login, but sometimes this causes problems with remote users connecting; sometimes it takes a couple of extra seconds for people to login. Make the time limit around 30 seconds. If people are still having trouble connecting check the /var/log/auth.log file for more information about the failed login attempt. Maybe the password is too complicated? Before reducing the complexity of the password implement fail2ban, which will automatically block ip addresses based on failed login attempts, therefore you can reduce the complexity of the password without substantially reducing system security.
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_e.png?x-id=e60bad9b-01fa-477c-8d93-931cacb700d4)
Microsoft Windows – New OS Why? People Don’t Update Either Way
Nov 22nd
The problem with Internet security nowadays is largely in part because people do not know how to update their computers. I fix computers as a side job, and you’d be surprised that many people have told me they don’t click the Microsoft gold shield in their system tray because there is a virus going around. What absolute ignorance. The Gold shield will update your computer to protect you as much as possible with critical updates. I am continuously flabbergasted with genuine stupidity. The default setting in all MS Windows products should be to automatically install updates, because the general public simply does not understand the importance of keeping their software shiny new.
Every time you see the gold shield in the bottom right hand corner of your computer, it is your obligation to click it and process the updates. As a Windows user, if you have a virus, a Trojan, or anything in between you are contributing to the massive problems that plague the Internet nowadays. Spam, phishing and lots of other things are predominantly broadcast from exploited machines.
Recent exploits in old versions of Internet Explorer have resurfaced this very issue of security.
“Symantec has conducted further tests and confirmed that it affects Internet Explorer versions 6 and 7,” the company wrote on its Web site Saturday. “We expect that a fully-functional reliable exploit will be available in the near future.”[Source]
People have relatively new installations of Windows Vista and they are using Internet Explorer 6 and 7. Why? There is Internet Explorer 8? “Ohhh, I don’t like the new version”, they say. But the new version is more secure, and more up to date. Get used to change; accept change for the better. It is necessary.
There is another major problem. PC manufacturers like to sell antivirus software packages. They preinstall them on machines, and give 60 free trials, and then expect people to pay the subscription fees to keep them active. This is absurd. Who in their right mind will pay those fees? By far the vast majority of people do not pay those fees and are using high vulnerable, non up to date software. This is a shame because AVG, and other companies, offer free anti virus that is continuously updated! Yes, I said continuously updated. New updates are issued all the time for free; do you understand free does not cost money?
If you are using a Windows computer update your antivirus right now. Do the world a favor and remove that botnet from your computer. Stop sending out mass spam emails right now. Run S right now. Install it from www.spybot.com. Install the apps, update them, then reboot your computer in safe mode. Hold f8 when your booting and select safe mode! Run AVG, then Spybot, then AVG, and Spybot again. Clean your machine now!
Now this will take some time to clean your virus infested Windows machine thoroughly. Maybe a day or two. Maybe you will have to reinstall the entire OS alltogether. Either do this now, or download Ubuntu and never think about antivirus again.