- cross-posted to:
- cybersecurity@lemmy.capebreton.social
You must log in or register to comment.
taaz ( @taaz@biglemmowski.win ) English13•9 months agoFun, I didn’t know about this. =)
PureTryOut ( @PureTryOut@lemmy.kde.social ) 4•9 months agoPersonally I made sure SSH is only accessible when connected through a VPN setup for that purpose. As in, that same machine hosts a Wireguard setup (through Tailscale) and you need to connect to that first before SSH is available. And then SSH also only accepts key-based authentication. I don’t think I need more than that?
Possibly linux ( @possiblylinux127@lemmy.zip ) English2•9 months agoCouldn’t you just use ssh port forwarding?
ReversalHatchery ( @ReversalHatchery@beehaw.org ) 3•9 months agoIf they use the VPN for other things too, it’s simpler this way
PureTryOut ( @PureTryOut@lemmy.kde.social ) 1•9 months agoSure but I rather not have the SSH port open to the world, it just makes it harder for attackers to get in this way. Besides I use the VPN for more things, some self-hosted services I don’t want accessible by the whole world.