Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lab 7 - Topics Establishing SSH Connection Install SSH Configure SSH

Published byRatna Kusuma Modified over 6 years ago

Similar presentations

Presentation on theme: "Lab 7 - Topics Establishing SSH Connection Install SSH Configure SSH"— Presentation transcript:

1 OPS235 Setup and Configure Secure Shell Services (ssh) Using Virtual Machines

2 Lab 7 - Topics Establishing SSH Connection Install SSH Configure SSH
SSH Public Key Authentication scp, sftp SSH Tunnelling How to Make SSH More Secure

3 SSH The concept of connecting computers via wide area networks is not new. In the Fall 1969, the forerunner to the Internet was developed by connecting 4 computer systems via communication lines. This lead to the development of network-based applications: Telnet (1970) FTP (1972) Standard symbol )

4 SSH The problem with the Telnet and FTP applications is that they are not secure (at least the applications that were developed years ago). This means that Internet traffic is available for viewing and interpretations by other people (lurkers). This could pose a serious security risk – for example: account passwords. SSH (Secure Shell) is a method to allow secure transmission of data between two computer systems. This method uses public and private key cryptography initially theorized by Whitfield Diffy in the 70s.

5 SSH How to start ssh on all 3 Virtual Machines?
How to establish ssh connection via Virtual Machines? How to establish ssh connection via Public Key Authentication What is the purpose of this above method? How to use scp and sftp?

6 SSH – Tunnelling SSH Tunnelling allows secure communications among computer system, not only for text-based transactions, but also remote graphical applications. SSH Tunnelling opens up an encrypted channel (tunnel) via a ssh connection. Assuming you are located in the centos1 virtual machine. What is the command using SSH tunnelling to run the gedit program on centos2, but display it in centos1?

7 SSH – Tunnelling SSH can be used to tunnel other types of traffic. For example, it can be used to bypass a firewall (iptables rule). How is this done? Establish an SSH Tunnel on a local port of the remote machine. For example, here is the command to create a tunnel for accessing the World Wide Web for a remote host called “hostname”: ssh -L 20808:hostname:80 The above example assumes that incoming requests are blocked for port 80: iptables INPUT -p tcp s0/0 d0/0 –dport 80 DROP

8 Making SSHd More Secure
Discuss the steps for making sshd more secure: More secure root passwords Edit /etc/ssh/sshd_config Deny root login Restrict user access Change default port number iptables rules to reject old ssh port and accept new ssh port Use ssh command with -p option Monitor system logs (eg. /var/log/secure) to check for authorized access attempts.

Download ppt "Lab 7 - Topics Establishing SSH Connection Install SSH Configure SSH"

Similar presentations

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Ferry Astika Saputra Workshop Administrasi Jaringan TELNET & SSH.

McGraw-Hill©The McGraw-Hill Companies, Inc., 2000 Ferry Astika Saputra Workshop Administrasi Jaringan TELNET & SSH.
Ipchains and Iptables Linux operating system natively supports packet-filtering rules: Kernel versions 2.2 and earlier support the ipchains command. Kernel.

Ipchains and Iptables Linux operating system natively supports packet-filtering rules: Kernel versions 2.2 and earlier support the ipchains command. Kernel.
Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.

Networks. User access and levels Most network security involves users having different levels of user access to the network. The network manager will.
Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.

Chapter 21 Security. Computer Center, CS, NCTU 2 Firewall (1)  Using ipfw 1.Add these options in kernel configuration file and recompile the kernel 2.Edit.
File Transfer Methods : A Security Perspective. What is FTP FTP refers to the File Transfer Protocol, one of the protocols within the TCP/IP protocol.

File Transfer Methods : A Security Perspective. What is FTP FTP refers to the File Transfer Protocol, one of the protocols within the TCP/IP protocol.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.

1 Lecture 20: Firewalls motivation ingredients –packet filters –application gateways –bastion hosts and DMZ example firewall design using firewalls – virtual.
Remote access and file transfer Getting files on and off Bio-Linux.

Remote access and file transfer Getting files on and off Bio-Linux.
Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.

Ssh: secure shell. overview Purpose Protocol specifics Configuration Security considerations Other uses.
4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.

4-1 PSe_4Konf.503 EAGLE Getting Started and Configuration.
Telnet/SSH: Connecting to Hosts Internet Technology1.

Telnet/SSH: Connecting to Hosts Internet Technology1.
Course 201 – Administration, Content Inspection and SSL VPN

Course 201 – Administration, Content Inspection and SSL VPN
Computation for Physics 計算物理概論 Introduction to Linux.

Computation for Physics 計算物理概論 Introduction to Linux.
07/11/2012 www.eej.ulst.ac.uk/~ian/modules/COM342/COM342_L10.ppt L10/1/63 COM342 Networks and Data Communications Ian McCrumRoom 5B18 Tel: 90 366364 voice.

07/11/ L10/1/63 COM342 Networks and Data Communications Ian McCrumRoom 5B18 Tel: voice.
Web Server Administration Chapter 10 Securing the Web Environment.

Web Server Administration Chapter 10 Securing the Web Environment.
Csci5233 Computer Security1 Bishop: Chapter 27 System Security.

Csci5233 Computer Security1 Bishop: Chapter 27 System Security.
Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.

Remote Access Chapter 4. Learning Objectives Understand implications of IEEE 802.1x and how it is used Understand VPN technology and its uses for securing.
SCSC 455 Computer Security Network Security. Control access to system Access control mechanisms in specific network programs  e.g. 1, wu-FTP server support.

SCSC 455 Computer Security Network Security. Control access to system Access control mechanisms in specific network programs  e.g. 1, wu-FTP server support.
Secure Shell for Computer Science Nick Czebiniak Sung-Ho Maeung.

Secure Shell for Computer Science Nick Czebiniak Sung-Ho Maeung.

Similar presentations

Ads by Google