Post 9xo0V8InphgkvXMHb6 by simpletech@social.privacytools.io
(DIR) More posts by simpletech@social.privacytools.io
(DIR) Post #9xo0V8InphgkvXMHb6 by simpletech@social.privacytools.io
2020-08-05T07:47:37Z
0 likes, 1 repeats
I thought configuring GPG was a headache with sub-keys, revocation-certificates, key-servers,...BUT ssh?! :crazy: I mean, ssh user@host -- get it. Easy peacy.-- There are a quadtrillion config-files in /etc/ and $HOME/.ssh, ssh+sshd, ssha, certificates,..... :openbsd: The more I want to dig into a topic (even if it's a simple thing like ssh), the more I feel overwhelmed by the tremendous deepness of the topic.Soo... time to dig deeper into a relatively new topic for me :)) :terminal:
(DIR) Post #9xo2guG24nIikenvzU by nikolal@social.privacytools.io
2020-08-05T08:12:11Z
0 likes, 0 repeats
@simpletechFor start checkout public key authentication, don't enable root login, change port to something other than 22 and if you are only person which connects to server check out also IP whitelisting. SSH config file is located in /etc/ssh/sshd_config. IP whitelisting can be done with /etc/hosts.allow and /etc/hosts.deny but there are other ways to do it, fail2ban is one of them
(DIR) Post #9xo4BH2a2AQK3NYYd6 by simpletech@social.privacytools.io
2020-08-05T08:28:51Z
0 likes, 0 repeats
@nikolal thank you for your help! I'm trying to connect to my home-server (a small raspi) via public-key authentication but: step-by-step. I don't even know YET how to configure it in a secure way :)It's always the same: you don't know anything, you are frustrated, you try it, again and again, it works... or it doesn't... you are frustrated... but then it works (somehow!) :bash:
(DIR) Post #9xo9jFrJQwXa0NJCUq by nikolal@social.privacytools.io
2020-08-05T09:31:01Z
0 likes, 0 repeats
@simpletech I also use ssh to connect to my home raspberry pi, if you need anything feel free to ask me