Is it safe to open ssh port to world with only key based authentication?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Is it safe to open ssh port to world with only key based authentication?
From: Vijay Gill <vijay.s.gill@xxxxxxxxx>
Date: Wed, 23 Nov 2005 08:00:51 +0000
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=EgD41onCdNtKtqM7oH30QopUXTHTRPaYK39omzfQsDcO3fJES8fHP1tzXQpNrbA07OwnLBk7s66jGbSERe2PZMiK25XiL5nHo5DGmLg1Bik+XetGjYLkyT1NyUkcBGFckA+zFdOSf5gLIao5+m1uUWZfFIBZwctzgL0iF86czh8=
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <https://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>

Hi,

    I read it somewhere (I googled and found it, but cannot find it
again) that if password based authentication is disabled and using
only key based, it is safe to have your fedora box available over the
internet so that you can login remotely.

   I currently have the system connected to cable broadband connection
with iptables based firewall rules which prevents connections to ssh.

   Recently I started using key based authentication and disabled
passwords in /etc/ssh/sshd_conf My question is, is it safe to open the
port 22 in my iptables firewall script?

Regards from
Vijay Gill

Follow-Ups:
- Re: Is it safe to open ssh port to world with only key based authentication?
  - From: Ian Pilcher
- Re: Is it safe to open ssh port to world with only key based authentication?
  - From: Mike Klinke

Prev by Date: Re: Installation method
Next by Date: Re: .zip,.exe attachments and spam assassin
Previous by thread: Installation method
Next by thread: Re: Is it safe to open ssh port to world with only key based authentication?
Index(es):
- Date
- Thread

[Index of Archives] [Current Fedora Users] [Fedora Desktop] [Fedora SELinux] [Yosemite News] [Yosemite Photos] [KDE Users] [Fedora Tools] [Fedora Docs]