Email or username:

Password:

Forgot your password?
Veronica's posts Post Back to profile
Top-level
Jan

@vkc
You are certainly right.

But I have and keep SSH open to the internet because I NEED this to access a couple of services when not at home (I am a terminal guy). I have some extra security measures in place like ssh proxy, fail2ban (yes!) or public/private key instead of password login.

I wonder if (Open)SSH is that bad and the port needs to be closed - compared e.g. to some complex web services sitting on port 443.

1 July at 14:59 | Wall-to-wall | Open on social.tchncs.de
2 comments
GodEater

@rzbrk @vkc is there a reason you're not using TailScale for that use case?

1 July at 16:14 | Open on hachyderm.io
Jan

@godeater
Good question. Most of my days I work on IT equipment owned and controlled by my employer. I cannot use or install a VPN client. But there is a SSH client and a "hole" in the company's firewall (port 22 outgoing is blocked) which I use to SSH into my homeserver to e.g. check my private mails or the like.

For my personal mobile devices I use wireguard when I am in spooky networks. Maybe, I should test tailscale.

@vkc

1 July at 17:49 | Open on social.tchncs.de
Go Up