Security Basics mailing list archives

Re: Leaving a door open?

From: v3x <v3x.proof () gmail com>
Date: Fri, 27 May 2005 13:17:01 -0600

Every thought about trying 'Port Knocking'? Great Article on it,
http://www.linuxjournal.com/article/6811 If your decent with shell
scripting, you could write a script that checks your logs for attempts
on certain ports in a certain sequence, then opens up the port to the
ip address they came from. That should solve your problems with just
blatently opening the port and make it a little more secure.

v3x


On 5/27/05, Emmanuel Goldstein <goldstein101 () gmail com> wrote:

Hi!

My ISP gives me a static Ip and I was thinking about leaving the SSH
port open so I can access my computer from anywhere since i always
have it switched on.

I have a linux box that is integrated in my home Lan, and a router
with firewall capabilities.

Is this secure??? Note that my admin password is really hard to guess,
so im not concerned about bruteforce attacks.

Should I map ports so instead of opening 22 I access through (eg) 'ssh
-p 7623'. That way is not that obvious i have an open ssh port is, it?

Any other security issues i should be concerned about?
Is this a good idea?
Is it better to just set up an ftp server?


Thanks for your help. Cheers. Bye.

Current thread:

Leaving a door open? Emmanuel Goldstein (May 27)
- Re: Leaving a door open? Diego Kellner (May 30)
- Re: Leaving a door open? Gonzalo Martinez (May 30)
  - Re: Leaving a door open? Jonathan Loh (May 31)
- Re: Leaving a door open? Raphaël Rigo ML (May 30)
- Re: Leaving a door open? v3x (May 30)
- Re: Leaving a door open? Robert Perriero (May 30)
- Re: Leaving a door open? slashboot (May 30)
- Re: Leaving a door open? Ashish Popli (May 30)
- Re: Leaving a door open? J0ck3r (May 30)
  - Re: Leaving a door open? Emmanuel Goldstein (May 30)
- Re: Leaving a door open? SandEr (May 30)
- <Possible follow-ups>
- Re: Leaving a door open? Nobody Special (May 30)