|
Tutorial: Chroot SSH/SFTP on Debian |
vote
 |
|
| This tutorial describes two ways how to give users chrooted SSH access. With this setup, you can give your users shell access without having to fear that they can see your whole system. Your users will be jailed in a specific directory which they will not be able to break out of. The users will also be able to use SFTP in their chroot jails. read more... |
|
| | permapage | score:8286 | -falko, September 9, 2007 |
|
Linux SSH Tutorial |
vote
|
|
Learn the in's and out's of using SSH on your Linux box from this newly-rewritten tutorial.
This tutorial isn't going to cover how to install SSH, but will cover how to use it for a variety of tasks. Consult your Linux distribution's document for information on how to setup OpenSSH.
Chances are that if you are using a version of Linux that was installed within the last 4 or 5 years that you already have OpenSSH installed. The version of SSH that you will want to use on Linux is called OpenSSH. As of this writing (January 2006), the latest version available is 4.2, but you may encounter versions from 3.6 on up. If you are using anything lower than version 3.9, you should upgrade it. read more... |
|
| | mail this link | permapage | score:8261 | -Ray, March 4, 2006 |
|
Restrict users to SCP and SFTP with Chrooted rssh on RHEL |
vote
|
|
FTP is insecure protocol, but file-transfer is required all time. You can use OpenSSH Server to transfer file using SCP and SFTP (secure ftp) without setting up an FTP server. However, this feature also grants ssh shell access to a user.
In this article series we will help you provide secure restricted file-transfer services to your users without resorting to FTP. It also covers chroot jail setup instructions to lock down users to their own home directories (allow users to transfer files but not browse the entire Linux / UNIX file system of the server) as well as per user configurations. read more... |
|
| | mail this link | permapage | score:8252 | -nixcraft, January 2, 2008 |
|
SSH Tricks |
vote
|
|
Useful ssh tips and tricks...
SSH (secure shell) is a program enabling secure access to remote filesystems. Not everyone is aware of other powerful SSH capabilities, such as passwordless login, automatic execution of commands on a remote system or even mounting a remote folder using SSH! In this article we’ll cover these features and much more. read more... |
|
| | permapage | score:8250 | -Ray, July 6, 2006 |
|
Tutorial: Set up Kojoney SSH Honeypot on CentOS 5.5 |
vote
|
|
| Kojoney is a low level interaction honeypot that emulates an SSH server. The daemon is written in Python using the Twisted Conch libraries. In computer terminology, a honeypot is a trap set to detect, deflect, or in some manner counteract attempts at unauthorized use of information systems. Generally it consists of a computer, data, or a network site that appears to be part of a network, but is actually isolated, (un)protected, and monitored, and which seems to contain information or a resource of value to attackers. This tutorial shows how you can compile and install an updated version of Kojoney on a CentOS 5.5 server. read more... |
|
| | mail this link | permapage | score:8221 | -falko, October 4, 2010 |
|
HPN-SSH: Multithreaded SSH |
vote
|
|
This performance-enhanced SSH/SCP variant also dynamically allocates and sizes the receive buffers for substantial performance inprovement.
This cipher mode introduces multi-threading into the OpenSSH application in order to allow it to make full use of CPU resources available on multi-core systems. As the canonical distribution of OpenSSH is unable to make use of more than one core, high performance transfers can be bottlenecked by the cryptographic overhead. read more... |
|
| | permapage | score:8205 | -Ray, February 13, 2008 |
|
Linux Server clinic: Connect securely with ssh |
vote
|
|
| You'll undoubtedly want to use ssh to work on your servers from remote sites, but it takes an assortment of tricks to keep progress rolling smoothly. While the ability to work remotely has always been one of the Linux advantages system programmers and administrators have most enjoyed, setting up for remote access takes more than one simple recipe. This article show you, with the proper use of ssh, neither distance nor firewalls need keep you from your servers. read more... |
|
| | permapage | score:8146 | -solrac, July 15, 2003 |
|
Prevent SSH dictionary attacks with DenyHosts |
vote
|
|
In this HowTo I will show how to install and configure DenyHosts. DenyHosts is a tool that observes login attempts to SSH, and if it finds failed login attempts again and again from the same IP address, DenyHosts blocks further login attempts from that IP address by putting it into /etc/hosts.deny. Therefore you can stop SSH dictionary attacks with this tool.
DenyHosts can be run by cron or as a daemon. In this tutorial I will run DenyHosts as a daemon. read more... |
|
| | permapage | score:8131 | -falko, February 19, 2006 |
|
Tutorial: Ultimate OpenSSH / Keychain Howto |
vote
|
|
The fundamentals, starting with installation.
All right, so maybe this isn't quite the ultimate. But this howto will show you the fundamental ways to use OpenSSH; how to generate public/private key pairs and strong passphrases, and how to use the wonderful Keychain utility to automate your SSH logins. This is exceptionally handy when you log in and out frequently, and don't want to keep entering your passphrase. read more... |
|
| | permapage | score:8123 | -Ray, March 4, 2005 |
|
Set up SFTP with OpenSSH |
vote
|
|
| Secure file transfer gets too little attention, perhaps because it is too easy. For secure file transfer without the need of special programs or clients, nothing more is needed than to have the OpenSSH server installed and running. It has a built-in SFTP subsystem that is available to any account that can log in. In other words, for basic SFTP access, nothing needs to be done other than have an account accessible via SSH. read more... |
|
| | permapage | score:8105 | -falko, March 23, 2011 |
|
Tutorial: Disable SSH, use scponly for file transfer (Debian 6) |
vote
|
|
| scponly is an alternate shell that restricts users to SCP and SFTP logins, but disallows SSH logins. It is a wrapper to the OpenSSH suite of applications. With the help of scponly, you can allow your users to use clients such as WinSCP or FileZilla to upload/download files, but you refuse SSH logins (e.g. with PuTTY) so that your users cannot execute files/programs. This tutorial shows how to install and use scponly on Debian Squeeze. read more... |
|
| | permapage | score:8090 | -falko, August 24, 2011 |
|
ssh: Secure shell tricks |
vote
|
|
Use ssh with pipes and such...
One can do a lot more with ssh than use it for remote terminal session. Here we'll show how to copy files using ssh, use ssh as part of a pipe, vnc or samba forwarding via ssh and mounting filesystems using ssh (fuse + sshfs) read more... |
|
| | permapage | score:8077 | -Ray, September 13, 2006 |
|
Tutorial: Five steps to SSH key authentication with PuTTY and Linux |
vote
|
|
| This tutorial explains how you can replace password-based SSH authentication with key-based authentication which is more secure because only the people that own the key can log in. In this example, we're using PuTTY as our SSH client on a Windows system. read more... |
|
| | permapage | score:8073 | -falko, June 29, 2009 |
|
Set up SSH2 on Red Hat Enterprise Linux |
vote
|
|
Find out how to set up SSH2 (Secure Shell) on Red Hat Enterprise Linux (RHEL), using encryption keys instead of passwords in this tutorial. You can use this with either RHEL 4 or RHEL 5.
There are currently two versions of the SSH protocol in use, which are SSH1 and SSH2. The SSH1 protocol can be exploited through its connection setup protocol and is, therefore, not commonly used anymore. The SSH2 protocol however, has a more robust and more flexible connection-setup. There are two enterprise-level versions of SSH: one derived from ssh.com, and the other is OpenSSH. OpenSSH is free and used more often. In fact, OpenSSH is included with most Linux distributions. read more... |
|
| | mail this link | permapage | score:8049 | -estride, July 18, 2007 |
|
Using SSH and SCP without passwords |
vote
|
|
Setting up SSH user equivalency makes it extremely convenient to propagate files, either manually or via scripts for backups, etc. For some environments, such as Oracle Grid, ssh user equivalency is necessary for some tools to function.
In this article, I show you how to use the scp (secure copy) command without needing to use passwords. I then show you how to use this command in two scripts. One script lets you copy a file to multiple Linux boxes on your network, and the other allows you to back up all of your Linux boxes easily.
[ . . . ]
But what I like best about scp is it's easily scriptable... read more... |
|
| | mail this link | permapage | score:7935 | -Ray, October 9, 2005 |
|
Tutorial: Set up chrooted SSH/SFTP |
vote
|
|
| This tutorial describes how to give users chrooted SSH and/or chrooted SFTP access on Debian Squeeze. With this setup, you can give your users shell access without having to fear that they can see your whole system. Your users will be jailed in a specific directory which they will not be able to break out of. I will also show how to restrict users to SFTP so that they cannot use SSH (this part is independent from the chroot part of this tutorial). read more... |
|
| | permapage | score:7929 | -falko, September 6, 2011 |
|
Use SSH via HTTP Proxy with Corkscrew |
vote
|
|
| If you want to ssh your vps server or your home computer from your work place (assuming you are using http proxy). You need to use Corkscrew. Corkscrew is a simple tool to tunnel TCP connections through an HTTP proxy supporting the CONNECT method. It reads stdin and writes to stdout during the connection, just like netcat. read more... |
|
| | permapage | score:7869 | -gg234, December 29, 2008 |
|
Tutorial: Tunneling MySQL connections through SSH |
vote
|
|
| This is a description of how to set up a secure tunnel between your MySQL Server and a locally running MySQL Administrator using Putty. By creating a secure tunnel to your MySQL server using Putty, you can grant localhost access to powerful applications like MySQL Administrator while at the same time, make your server appear as if it is not even there. In effect, make your MySQL server disappear from the outside world. read more... |
|
| | permapage | score:7852 | -falko, January 3, 2007 |
|
SSHFS: Securely Mount Remote Filesystem in RHEL |
vote
|
|
It is possible to mount your remote filesystem as a local filesystem on your Red hat/CentOS Linux system using sshfs.
FUSE is a Linux kernel module also available for FreeBSD, OpenSolaris and Mac OS X that allows non-privileged users to create their own file systems without the need to write any kernel code. SSHFS command utilizes FUSE to mount a file system using ssh.
This tutorial will describe installing FUSE, and using sshfs to mount your remote filesystem as a local mount point on your Linux system. read more... |
|
| | mail this link | permapage | score:7806 | -nixcraft, May 10, 2007 |
|
SSH over Tor |
vote
|
|
How to encrypt your traffic with SSH and tunnel it through Tor for privacy and security...
For communicating anonymously on the Internet you use Tor. For secure communications, so that nobody can read your private information you use SSH. Combine both, and you have a secure and anonymous communication. In this hack, we’ll show you how to use Tor to anonymize your SSH connections. read more... |
|
| | permapage | score:7794 | -Ray, June 4, 2007 |
|
|
