a little security

[David Mandala]

Actually no one is going to get your password since you are using SSH, BUT
having those ports open is not good. Close off the ports to the Internet and
use SSH port redirection and you should be somewhat more secure.

Or install a VPN using ipSEC but in any event close off the ports to the
internet at all costs.

Davidm

-----Original Message-----
From: Nathan England [mailto:plug@the-arcanum.org]
Sent: Friday, September 07, 2001 9:50 AM
To: Plug Discussion
Subject: a little security


Okay, I know half of you will probably shoot me for this, but I'm doing
it anyway...

I need access to a volume on a server across the internet.  
Right now I am running samba and I am connecting by running three
ssh tunnells to ports 137, 138, and 139 from my computer at work to the
server. From there I mount the volumes.

There has to be a more secure way than this. Especially more secure than
samba..  I have a good password, but still any sniffer would get it in a
few seconds.  Except for the ssh tunnels, there really isn't any
security.  

Are there any safer ways any one knows of that I could do this?
I'm not so worried about my security where someone sniffs me and gets my
password, but others seeing the wide open ports and going after it..
It's pretty stupid.

I was thinking about setting ipchains to only accept the connection from
a specific ip, but is there a better way than this?  Any input helpfull.
Thanks guys.

nathan


-- 
 "Ah, lives there a man with soul so dead, who never to himself hath
said, 
as he hunched and rolled in his comfortable bed:
To hell with rent...I'll drink instead!"

________________________________________________
See http://PLUG.phoenix.az.us/navigator-mail.shtml if your mail doesn't post
to the list quickly and you use Netscape to write mail.

PLUG-discuss mailing list  -  PLUG-discuss@lists.PLUG.phoenix.az.us
http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss