[ubuntu-uk] Preventing a hack attempt

Jacob Mansfield cyberjacob at gmail.com
Sat Aug 28 15:28:45 BST 2010


I have vnc to my servers, but it's locked down to my work and internal home
addresses only using firestarter. would this be an option for you?

On 28 August 2010 15:24, Matthew Macdonald-Wallace <
matthew at truthisfreedom.org.uk> wrote:

> Quoting "K.de Jong" <k.dejong at undifined.nl>:
>
> > If ssh is rarely used
> > and you have a running webserver
> > you could consider using ajaxterm
> >
> > you only listen to ssh on localhost
> > and have website that allows access to ssh
> >
> > this is slower and does not work well with remote ssh auth keys
> > but just another solution.
>
> Sorry, but I have to advise strongly against this.
>
> It is far easier to scan (and break!) a web app than it is to brute force
> SSH.
>
> If you are going to allow any form of command line access to your
> server at all, use SSH and nothing else.
>
> Kind regards,
>
> Matt
> --
> Matthew Macdonald-Wallace
> matthew at truthisfreedom.org.uk
> http://www.truthisfreedom.org.uk/
>
> --
> ubuntu-uk at lists.ubuntu.com
> https://lists.ubuntu.com/mailman/listinfo/ubuntu-uk
> https://wiki.ubuntu.com/UKTeam/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.ubuntu.com/archives/ubuntu-uk/attachments/20100828/e037a009/attachment.htm 


More information about the ubuntu-uk mailing list