Otkako sam stavio za SSH veći port i ovako podesio
/etc/ssh/sshd_config
#Lična podešavanja
Port xxxxx
AddressFamily inet
Protocol 2
# PubKey je najsigurnija prijava
#
http://blog.thomas-falkner.de/2007/09/25/ssh-absichern/
PubKeyAuthentication yes
RSAAuthentication yes
RhostsRSAAuthentication no
HostbasedAuthentication no
KerberosAuthentication no
GSSAPIAuthentication no
AuthorizedKeysFile %h/.ssh/authorized_keys
# Isključiti samo ako su razmenjeni ključevi, opasno, bolje ne koristiti!!!
#PasswordAuthentication no
#UsePAM no
PasswordAuthentication yes
PermitRootLogin no
DenyUsers root admin guest test user info bin daemon adm lp sync shutdown halt mail news uucp operator games ftp smmsp mysql rpc sshd nobody apache www wwwrun httpd irc ( i svi ostali realni korisnici na sistemu)
AllowUsers neki_prividni_korisnik
# Samo brojčane adrese rade ovde!
#
[email protected] [email protected]
#
[email protected]
DenyGroups root daemon sys adm disk floppy dialout tape video bin lp mem kmem tty floppy mail news uucp man games slocate utmp smmsp mysql
rpc sshd shadow ftp nogroup console xcdwriter
# users # ova grupa mora biti nezabranjena
AllowGroups nekog_prividnog_korisnika
# users wheel
LoginGraceTime 2m
StrictModes yes
MaxAuthTries 6
#
http://gentoo-wiki.com/TIP_SSH_Reverse_Tunnel
# TCPKeepAlive koristi protokol koji curi
TCPKeepAlive no
ClientAliveInterval 30
ClientAliveCountMax 99999
Normalno i
/etc/rc.firewall
podesio na taj Port
Dakle kako Jbyn4e pre napisa
ssh -p xxxxx
[email protected]
i kopiranje preko SSH
scp -P xxxxx "/negde/fajla.tar.bz2"
[email protected]:/negde/
Pozdrav nemysis