Next: Installing and using OpenSSH
Up: Everything you always wanted
Previous: Saving firewall rules and
-
Don't send information in cleartext over the 'net!
People can ``sniff'' usernames, passwords, other important info out of
network traffic
- Use secure mail protocols if possible (S/IMAP, or perhaps
tunnel cleartext POP connection using SSH) (S/IMAP at PPPL?)
-
Don't telnet, ftp, rcp! Replace with ssh, sftp,
scp!
- OpenSSH is a free implementation of SSH for almost all UNIX
platforms (http://www.openssh.com). (Might be appearing on the
PPPL Unix cluster soon?)
- SSH tools are available for Windows and Mac also (look at
http://www.openssh.com/windows.html for a list of free Windows and Mac clients)
- If all else fails, use the java ssh client at
https://w3.pppl.gov/ssh (must authenticate).
- Better to use SSH with private/public key pairs (rather than
password authentication). Try not to use .shosts!
- I'll cover: (a) How to install and configure openssh (b) how to
create and use ssh key pairs (c) how to run an ssh server with
ipchains firewalling
Next: Installing and using OpenSSH
Up: Everything you always wanted
Previous: Saving firewall rules and
Troy Carter
2001-06-03