On Sunday 16 October 2005 09:18 pm, Nick Rout wrote: > no, you just type: > > ssh my.network.com > > Depending on your setup you will probably need to set your > firewall/router to forward port 22 to the machine you want to log into. > Also make sure your ssh server is set up securely.
This last statement really needs to be highlighted for all of the newbies out there... Just opening port 22 will expose your system to attempted break-ins. If you look at your authorize.log (or relevant log depending upon your syslog config), you'll see after a couple of days different systems accessing ssh an trying to log in as root and/or other users. Unless you really feel comfortable with your own security infrastructure, your best bet is to edit your /etc/ssh/sshd_config file and change the port number to only something you'd think of in the higher range of port numbers. It will still be open, you'll still be able to hit the box from anywhere outside your network, but the different port number ensures that random port scans and breakin attempts will be significantly lower than if you just tried to use standard port #22. -- [email protected] mailing list
