On Sat, 2006-12-30 at 22:32 -0500, William Hooper wrote: > Aaron Konstam wrote: > > On Sat, 2006-12-30 at 10:08 -0500, Sam Varshavchik wrote: > > > >> Timothy Murphy writes: > >> > >> > >>> What is the safest way of allowing access to a home system > >>> from a remote computer? I am running Fedora-6 and shorewall. > >>> > >>> > >>> Any advice or suggestions gratefully received. > >>> > >> > >> Run ssh on a non-default port. > >> > >> > >> Turn off passwords. Use ssh certificates. > >> > >> > > There is something wrong with just saying use ssh. One assumes that the > > home machines are masqueraded behind a router. > > Router or no router, it doesn't matter. You just need to open a port for > SSH in the firewall if there is no router. If there is a router, you just > need to configure one port to forward to your SSH server. > > > It seems to me that one must > > configure that all packets arriving at the router address be routed to a > > particular home machine address. > > Why? SSH only needs one port. > Just bad editing on my part. I meant to say ... all ssh packets ... ======================================================================= Thyme's Law: Everything goes wrong at once. ======================================================================= Aaron Konstam telephone: (210) 656-0355 e-mail: akonstam@xxxxxxxxxxxxx
