Hello,

I use my computer at home and I'd like to get SSH access. I know the easiest way is to open SSH port in Firewall but... I need following:

1. I want to have only one user to get the access and I want to use different password for him.
   Because it is home computer I don't want to setup complex passwords for users. However if I open SSH I don't want my computer to be opened for everyone. I want to use one complex password like "jk@#wa62$s" for one user and I don't want to enter it when I use computer daily - for SSH only.
2. Because I have sometimes problems with closed outcoming ports (for example at work by my sysadmin) I want to use not default SSH prot but something like 80 for SSH access which is allways opened. I don't run HTTP server on it

How can I do this?

Can I also setup FTP access for one user with different password (I don't care about secure transfer)?

Thanks

edit your /etc/ssh/sshd_config to include
AllowUsers your_special_ssh_user_here
and then use "su" to switch to your "real" user. Also Im not sure if running sshd on 80 port is a good idea.

Thanks... it works.

The reason that I setup ssh on 80 is that 22 is restricted for outcoming at my work (and sysadmin don't want to open it) so I use something that is opened...

And one more does anybody know a good guide to setup wu-ftpd

If you want to run at port 80 just change it to that in the sshd_config. I understand your dilemma with the sysadmin at work but you should know that there are people out there, scanning computers on port 80 (and other public ports) so this will make your box more interesting. Just a thought.

But, check out sshd_config and at the top you will see
Port 22

Ok running on port 80 was bad idea... something gets wrong and it doesn't connect from Windows network (maybe because of Antiviruses) from one of linuxes I've get connection...

Interesting question is:

What are the ports that are usually opened for outcoming that I can put ssh on them???

More serious question is:
Ufff... How can I convince the sysadmin of that it is safe to open 22 port...

Here is what I would have done:

Make your sshd run on some random, high port like XXXXX, so most portscanners out there won't notice the port (only full port scan would detect it, nmap for example won't do this by default). ~50000 might work.

Then tell your sysadmin that you have a good reason for accessing your computer at home and tell him that SSH Protocol 2 is secure if someone would happen to sniff the network or something, and that you will run at a high port so script kiddies won't see the communication as anything interesting.

Good luck.