Categories
System Administration

Connecting to legacy servers with OpenSSH

Phasing out legacy cryptographic algorithms can always be an interesting endeavor as terminating to early breaks stuff and to late it can lead to a compromise. OpenSSH disabled DSA with version 7.0 in March 2015 as 5 years earlier it was discovered that DSA was compromised and labelled as insecure. Normally this shouldn’t be a […]

Categories
System Administration

Using explicit SSH authentication methods

For many SSH is a magic sauce to get access to a server and to transfer files between servers. But when things go wrong this magic sauce becomes a problem. Let start with one example when things go wrong and how to debug it. First, we start to add to option -v to our command […]

Categories
Internet, Unix en security

Port Forwarding met SSH

Uit veiligheid wil je soms niet elk protocol zomaar over Internet transporteren of verkeer door firewalls te krijgen. Zo ook met MySQL bijvoorbeeld, want packetfilters en SSL-verbindingen zijn ook niet echt ideaal om protocollen te beperken of te beveiligen. Gelukkig levert SSH een mooie tijdelijke oplossing in de vorm van portforwarding. Met het volgende commando […]