Hello chaps,
I have just discovered the joy of SSH!
I have set it up (on port 22) to only allow private key authentication and only on one user account with root access disabled.
Now I have forwarded port 22 on my router to the IP address of the one machine to which I want access (O/S Fedora Core 4) where it is met by my software firewall (Firestarter / IPTables). In this I have poked a hole through for access from my work IP address - and ONLY that IP address.
This is great - and it all works just fine - but suppose I want to use my laptop in (say) an Internet cafe or from a friend's house?
To do that I would (surely?) have to open up port 22 to everyone? If I do so will I have thousands of script-kiddies hammering on that door?
At the moment the firewall is reporting c. 5 or 6 portscans (I presume that's what they are) per day on that port, but
Shields Up reports that I am invisible on all ports.
If I open that port to enable me to access my home computer from wherever I am, I will no longer be invisible. Is there any way to prevent this or to ensure that it's not a problem?
Thanks for your advice
Mark