Welcome to the most active Linux Forum on the web.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 01-29-2005, 10:11 AM   #1
Registered: Aug 2004
Distribution: Mandrake 10.1/Slackware 10.0
Posts: 154

Rep: Reputation: 30
How safe am I?

My office server is behind a router, which is configured with a static IP address and port 22 (SSH) is forwarded to the server. No other ports are being forwarded.

If I leave the system as-is, how vulnerable am I to an outside attack? I want to be able to log on to the server remotely, but I certainly don't want anyone else to gain access.

Also, if anyone has suggestions on how I can improve this setup, it would be greatly appreciated.
Old 01-29-2005, 01:05 PM   #2
Senior Member
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,289

Rep: Reputation: 378Reputation: 378Reputation: 378Reputation: 378
Does your router firewall off other ports besides 22? If so, you're relatively safe, so long as you're running a modern version of OpenSSH (some old versions, at lkeast 3.5 and below are vulnerable to exploits) and your router itself isn't vulnerable to anything. Also, do you have strong passwords on accounts on the server? There are numerous scanners which will try to login to a server via ssh by trying many user names and trivial passwords.

Security isn't a one time thing. You need to keep up with any vulnerabilities found in OpenSSH and your router. You also should consider setting up a host IDS such as Tripwire or AIDE.
Old 01-29-2005, 02:47 PM   #3
Registered: Aug 2004
Distribution: Mandrake 10.1/Slackware 10.0
Posts: 154

Original Poster
Rep: Reputation: 30
Well, I don't know anything about the router "firewalling off other ports," but I know that only port 22 is listed for forwarding. And it is up-to-date with the latest firmware.

I do have Guarddog running on the server though, blocking basically every protocol except for SSH.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Is sock_sendmsg MP safe gsreekanth1 Linux - Networking 0 07-05-2005 02:27 AM
Is it safe ? Alex_jacobson Solaris / OpenSolaris 2 03-02-2005 02:24 PM
Is this safe enough? koyi Linux - Security 4 08-18-2004 11:50 PM
Is raid safe ? ziz Linux - Hardware 2 03-04-2004 07:05 AM
is it safe... violaten Linux - Hardware 1 08-03-2003 03:56 AM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:09 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration