is ssh needed

shanenin · 11-05-2003, 12:16 PM

I hear that ssh can be a security risk. I don't think I use it but am not sure. Is it used to remotly access my computer? I don't do that.

RolledOat · 11-05-2003, 01:03 PM

Yes. You do not want sshd (or xinetd which controls access to many connect services) running unless others/you need remote access TO your machine. You do want ssh installed if you access OTHER machines using ssh.

RO

aqoliveira · 11-06-2003, 07:26 AM

Howzit

good security habit is to close all services that are not used sometimes it? even better to uninstall that service but there is always that possibility that u might need one day.

chow

cyph3r7 · 11-06-2003, 09:52 AM

Any service running on your system can be a security risk. It's a matter of what you need vs. what you need to expose to the world vs. what you need to do your job. So taking that in mind i have a server that isn't connected to a monitor. I need SSH to access that box instead of telnet as it is more secure. Knowing this, it is my responsibility so make sure SSH is up to date to avoid known holes. As for my laptop, I don't need anyone to access it remotely so SSH server is disabled.

richard3403 · 11-09-2003, 01:20 PM

I would disable telnet and ftp and only use ssh to access your computer when you are away from the console.

joseph · 11-09-2003, 07:37 PM

i will close unused service, at the same time i will setup fierwall to minimize an attack of my server. This is what i do