[TriLUG] ssh question
Brian via TriLUG
trilug at trilug.org
Mon Oct 24 12:18:17 EDT 2016
On 10/24/2016 12:08 PM, Grawburg via TriLUG wrote:
> Here's why security is not an issue.
> 1. The remote Pi (2 floors below) will be accessed for less than 10 minutes and then only a couple of times a month.
Invaders need less than a few seconds to compromise an insecure machine.
> 2. There is no data anyone would want to view or steal even if they could get into the network.
Theft isn't the only bad thing that hackers do. Profit is not the only
motive. Vandals gonna vandalize; how badly would your day be ruined to
come to work and find that every hard drive on every computer that
happened to be on overnight had been wiped?
> 3. If we've not had anyone hack into our network since I've been here (8 years) I don't think they're going to.
There's always a first time.
I recommend configuring the remote Pi's firewall, at a minimum, to only
accept originating connections from the client Pi.
Cheers,
-B
More information about the TriLUG
mailing list