[TAG] Question about restricting SSH access and open access to a specific computer
Ramon van Alteren
ramon at vanalteren.nl
Tue Jan 17 00:33:41 MSK 2006
Suramya Tomar wrote:
> I have a question for you regarding restricting access to my computer.
> I am running a Debian system and have SSH (OpenSSH_4.2p1) running. I
> use IPtables to restrict SSH access to a selected set of IP's.
>
> Now the problem I am facing is that while I am in India my public IP
> changes at random intervals so every day or so I have to login to my
> server via another system who's IP thankfully doesn't change and give
> my public IP access to that system. While this is not a big deal its
> still a pain to do.
>
> Now I don't want to open access to the entire C network for my IP in
> India but want to make my life easier. So was wondering if there was
> some other way of limiting access that limited access to a specific IP
> set but also let me authenticate using a token or something?
I usually open access to the world on my servers, but disallow password
logins and root logins
A good tutorial on private/public key authentification & ssh is here:
http://www.gentoo.org/doc/en/keychain-guide.xml
It's a little bit gentoo specific but shouldn't be a lot of work to
install keychain on another linux distro.
Keychain is not mandatory BTW to use public/private key authentification
with ssh.
Grtz Ramon
--
To be stupid and selfish and to have good health are the three requirements for happiness, though if stupidity is lacking, the others are useless.
Gustave Flaubert
More information about the TAG
mailing list