peter Wrote: > On Mon, 1 May 2006 11:44:05 -0700, "azinck3" > <azinck3.2756h01146509102 (AT) no-mx (DOT) forums.slimdevices.com> > said: > > > > Yes, this is possible. It will, however, require some configuration > on > > your part. The simple but unsecure way is to forward ports 3483 and > > 9000 on your router to the box hosting slimserver. > > > > This, however, leaves your server machine open to potential (but > > unlikely) exploits. The more secure approach is to use SSH. You'd > > have to set up SSH on your server machine, but since the squeezebox > > hardware doesn't support SSH you'd also have to set up an SSH client > on > > your girlfriend's computer, configure it to forward all requests on > > ports 3483 and 9000 to your remote server computer, then point your > SB > > at her machine. > > I've said it before and I'll say it again: Provided he restricts > incoming traffic on your router to his GF's IP address it is totally > unnecessary to use VPN or SSH tunneling for this kind of thing. IP > filters are impenetrable without attackers having cracked his (or her) > ISP first and then it's not just you who's in trouble. Tunneling is > alwyas a hassle and makes everything a lot less reliable. If your > routers support router-to-router LAN tunneling it's worth considering, > but else I'd forget it. > > Common sense is requirement #1 in security. > > Regards, > Peter
I appreciate this feedback and I trust you are correct. Despite being a web programmer in my daily life, I know relatively little about the various attacks that can be mounted so wanted to err on the side of caution in any advice I might give. There seem to be a lot of old-wives tales out there in the network security world, and I have been somewhat baffled by the degrees to which some people will go to "secure" (I use quotes because sometimes the effectiveness of the approach seems questionable) their data. I figure I'm more likely to have my identity stolen by handing my credit card to the waitress at a restaurant than I am by way of having my slimserver hacked. But to each his own. For me, between not having anything of great value/secrecy on my personal computer and the relative obscurity of slimserver, I've felt no qualms simply using IP filtering. I'm glad to know this is not only convenient, but safe. -- azinck3 ------------------------------------------------------------------------ azinck3's Profile: http://forums.slimdevices.com/member.php?userid=3967 View this thread: http://forums.slimdevices.com/showthread.php?t=23525 _______________________________________________ discuss mailing list [email protected] http://lists.slimdevices.com/lists/listinfo/discuss
