3
1
I'm trying to set up an SSH server which I can access from my home network only, not the Internet.
It's running Ubuntu Linux.
I've installed the ssh
package, and I can start/stop the SSH server, and then proceed to log into the computer from my other machine which is on the same network.
However, before proceeding any further, which security considerations should I take? Excluding the obvious one of setting a secure password.
I'm also worried: if someone would find out the IP of the server, would they be able to connect to it? How can I disable connections that don't come from 192.168.*.*
?
1I still get impressed when I see a server that has its default SSH port changed to something else. I consequently do this for all my boxes and relieves me of a lot of random login tries. – Mogget – 2013-08-16T14:01:51.460
1
Also, if you go on the Internet. I would also add blocking ranges found in the following: http://www.wizcrafts.net/chinese-iptables-blocklist.html. I think 90% of attacks were dropped at that point. Of course this assumes you aren't logging in from those ranges.
– prateek61 – 2013-08-16T22:00:34.363