LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices



Reply
 
Search this Thread
Old 01-29-2005, 10:11 AM   #1
bad_andy
Member
 
Registered: Aug 2004
Distribution: Mandrake 10.1/Slackware 10.0
Posts: 154

Rep: Reputation: 30
How safe am I?


My office server is behind a router, which is configured with a static IP address and port 22 (SSH) is forwarded to the server. No other ports are being forwarded.

If I leave the system as-is, how vulnerable am I to an outside attack? I want to be able to log on to the server remotely, but I certainly don't want anyone else to gain access.

Also, if anyone has suggestions on how I can improve this setup, it would be greatly appreciated.
 
Old 01-29-2005, 01:05 PM   #2
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,159

Rep: Reputation: 328Reputation: 328Reputation: 328Reputation: 328
Does your router firewall off other ports besides 22? If so, you're relatively safe, so long as you're running a modern version of OpenSSH (some old versions, at lkeast 3.5 and below are vulnerable to exploits) and your router itself isn't vulnerable to anything. Also, do you have strong passwords on accounts on the server? There are numerous scanners which will try to login to a server via ssh by trying many user names and trivial passwords.

Security isn't a one time thing. You need to keep up with any vulnerabilities found in OpenSSH and your router. You also should consider setting up a host IDS such as Tripwire or AIDE.
 
Old 01-29-2005, 02:47 PM   #3
bad_andy
Member
 
Registered: Aug 2004
Distribution: Mandrake 10.1/Slackware 10.0
Posts: 154

Original Poster
Rep: Reputation: 30
Well, I don't know anything about the router "firewalling off other ports," but I know that only port 22 is listed for forwarding. And it is up-to-date with the latest firmware.

I do have Guarddog running on the server though, blocking basically every protocol except for SSH.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Is sock_sendmsg MP safe gsreekanth1 Linux - Networking 0 07-05-2005 02:27 AM
Is it safe ? Alex_jacobson Solaris / OpenSolaris 2 03-02-2005 02:24 PM
Is this safe enough? koyi Linux - Security 4 08-18-2004 11:50 PM
Is raid safe ? ziz Linux - Hardware 2 03-04-2004 07:05 AM
is it safe... violaten Linux - Hardware 1 08-03-2003 03:56 AM


All times are GMT -5. The time now is 02:29 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration