Bitcoin Forum
December 09, 2016, 03:38:03 PM *
News: Latest stable version of Bitcoin Core: 0.13.1  [Torrent].
 
   Home   Help Search Donate Login Register  
Pages: [1]
  Print  
Author Topic: How secure is a fresh Ubuntu install?  (Read 545 times)
afarzin
Jr. Member
*
Offline Offline

Activity: 41


View Profile
July 02, 2011, 06:40:36 PM
 #1

I have SSH server installed on my dedicated ubuntu miner but I'm not completely comfortable leaving it exposed for long periods of time. Is that really an issue? I don't mean physically exposed, rather out on the open internet.
1481297883
Hero Member
*
Offline Offline

Posts: 1481297883

View Profile Personal Message (Offline)

Ignore
1481297883
Reply with quote  #2

1481297883
Report to moderator
1481297883
Hero Member
*
Offline Offline

Posts: 1481297883

View Profile Personal Message (Offline)

Ignore
1481297883
Reply with quote  #2

1481297883
Report to moderator
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1481297883
Hero Member
*
Offline Offline

Posts: 1481297883

View Profile Personal Message (Offline)

Ignore
1481297883
Reply with quote  #2

1481297883
Report to moderator
1481297883
Hero Member
*
Offline Offline

Posts: 1481297883

View Profile Personal Message (Offline)

Ignore
1481297883
Reply with quote  #2

1481297883
Report to moderator
Bert
Full Member
***
Offline Offline

Activity: 126



View Profile
July 02, 2011, 07:24:33 PM
 #2

You will have a couple of hundred failed SSH login attempts a day from automated ssh bruteforce crawlers. So make sure that your username is unique (in some ways it is more important than your password) and your password is strong (12 character, lower,upper,numbers and symbols) would be my advise. Or better yet disable remote password login altogether and only allow login using ssh keys.

EDIT also run
netstat -an | more
And check what ports on the machine are currently open
port 22 is ssh on all network interfaces, so you will see a line similar to the following
Code:
tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN
Check what other ports are listening for incoming traffic on your machine, and see if you actually need them, if you don't then disable them.

You might also want to Google "bastille ubuntu" or "hardening ubuntu"

There is no such thing as a 100% secure, all you can do is raise your fence higher and make them stronger than other peoples, and hopefully crackers will leave you alone.

I once setup an OpenBSD machine on the Internet on which I modified the source to sshd and ran this 2nd fake copy on port 22. The machine logged the username and password attempts by the automated bots, they were very basic admin:admin apache:webmaster john:mypassword but that was around 5 years ago.

Tip jar: 1BW6kXgUjGrFTqEpyP8LpVEPQDLTkbATZ6
Pages: [1]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!