[aklug] Re: Remote access to data

From: Jim Gribbin <jimgribbin@gmail.com>
Date: Thu Jan 10 2008 - 13:33:05 AKST

You need to do like I do and get one with a lanyard. :-)

Damien Hull wrote:
> Interesting stuff. There's security and then there's so secure you
> can't access your data. I've been there. I had ssh with keys
> configured. I put the key on a USB stick/drive. Where was the key when
> I needed it? At home.
>
> As a geek I think it would be cool to say you have stuff like this
> configured. I don't understand it. Try listening to "security now" on
> www.twit.tv
>
>
> Jim Gribbin wrote:
>> I was cleaning out some email yesterday, re-read this, and it rang a
>> bell with something I had just read on Slashdot ...
>>
>> Cryptographically hiding your SSH ports.
>>
>> http://it.slashdot.org/article.pl?sid=08/01/08/1417214&from=rss
>>
>> Don't know if it will help anybody here. I know its over my head, but
>> ...
>>
>> It apparently goes along with that port knocking stuff. Also over my
>> head.
>>
>> Jim G
>>
>> Leif Sawyer wrote:
>>
>>> Damien Hull writeses...
>>>
>>>> I'm at the coffee shop trying to access my data back at the=20
>>>> home office. I have access to my DMZ. Most of the time
>>>> that's all I need access to.=20
>>>> Today is a little different. I'm missing a few files on my=20
>>>> test server. I need to access my data storage server in the
>>>> internal network.
>>>> =20
>>>> I could do one of the following.
>>>> =20
>>>> * Allow ssh into the privet network
>>>> o green interface on IPCop
>>>> * Setup a VPN
>>>> o Doesn't give me ssh access
>>>> o I would only be able to grab data on the shared directory
>>>> =20
>>>>
>>> You don't say what OS is running on your data storage server, or test
>>> server, or the like.
>>>
>>> But you could, you know, easily tunnel ssh inside of ssh.
>>> which means also, sftp in ssh.
>>>
>>> ssh -x -f -L ${PORT}:${DEST}:22 ${USER}@${BASTION} "sleep 10" && \
>>> sftp -oPort=3D${PORT} ${USER}@localhost
>>>
>>> yah?
>>>
>>> ---------
>>> To unsubscribe, send email to <aklug-request@aklug.org>
>>> with 'unsubscribe' in the message body.
>>>
>>>
>>
>> ---------
>> To unsubscribe, send email to <aklug-request@aklug.org>
>> with 'unsubscribe' in the message body.
>>
>>
>

---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.
Received on Thu Jan 10 13:34:02 2008

This archive was generated by hypermail 2.1.8 : Thu Jan 10 2008 - 13:34:02 AKST