I do it this way also. I have ftp turned off. I have configured SFTP via SSH. Two classes of users - non sudo and sudo. sudo user cannot log in or access via ssh. I log in via a non sudo user and su to a sudo user so I have access to root. Also with a static IP you can use your IPTables to block access to only the IP's you want to access your server. I use this approach also.
The IPTables solution will require some forethought. You will need to open your server to any IP from which you will want to access your server. This solution will not work if you will be on a road trip and using many unknown access points. While I have not used it I think you might be able to use Virtual Private Network (VPN). ------------------------ Keith Smith --- On Wed, 8/15/12, Stephen <cryptwo...@gmail.com> wrote: From: Stephen <cryptwo...@gmail.com> Subject: Re: how to transfer files To: "Main PLUG discussion list" <plug-discuss@lists.plug.phoenix.az.us> Date: Wednesday, August 15, 2012, 7:17 AM i would definitely use a nonstandard pot for ssh. also make sure to disallow direct root access via ssh so you have to use a regular user and su for any root functions should you decide they are necessary via remote. and that's a quick-list for my mind, there are others that would have a better scope of security suggestions for sure. i have seen the discussions go by that had some great ones. On Tue, Aug 14, 2012 at 11:17 PM, Michael Havens <bmi...@gmail.com> wrote: > dyndns with ssh/filezilla sounds like the way I want to go. But what about > suecurity? Shold I just tell it to use a non-standard port? > :-)~MIKE~(-: > > > On Tue, Aug 14, 2012 at 9:02 PM, JD Austin <j...@twingeckos.com> wrote: >> >> For me it's ssh. >> Filezilla (works on linux/windows) is a great scp client if you want a >> gui. >> >> B >> >> On Tue, Aug 14, 2012 at 8:27 PM, Stephen <cryptwo...@gmail.com> wrote: >>> >>> Hamachi, dropbox, dyndns with ssh/scp, there are many others. >>> >>> On Aug 14, 2012 4:00 PM, "Michael Havens" <bmi...@gmail.com> wrote: >>>> >>>> let's say I'm at starbucks and I need a file off of the computer at the >>>> house. Please, how do I do it? >>>> condition- I do not have a static ipaddress. >>>> :-)~MIKE~(-: >>>> >>>> --------------------------------------------------- >>>> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us >>>> To subscribe, unsubscribe, or to change your mail settings: >>>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss >>> >>> >>> --------------------------------------------------- >>> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us >>> To subscribe, unsubscribe, or to change your mail settings: >>> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss >> >> >> >> --------------------------------------------------- >> PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us >> To subscribe, unsubscribe, or to change your mail settings: >> http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss > > > > --------------------------------------------------- > PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us > To subscribe, unsubscribe, or to change your mail settings: > http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss -- A mouse trap, placed on top of your alarm clock, will prevent you from rolling over and going back to sleep after you hit the snooze button. Stephen --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
--------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss
