ssh?
jeff at bubble.org
jeff at bubble.org
Thu Jun 19 21:01:27 UTC 2008
I'm trying to make my system a little more secure but still allow it to be
accessed remotely from the internet using ssh and I'm looking for some
guidance. The systems in question are a Fedora 9 and a Fedora Core 6 system.
The first thing I did was on my workstation (that I ssh from) is create a
public/private key pair and installed the public key in
~/.ssh/authorized_keys2, and disabled the password authentication in the
/etc/ssh/sshd_config and everything so far works great.
My issue I came up with is one of the systems sits on my home network behind
a firewall, it would be nice if I can only require the public key for
systems not on my local network, eg only the systems on the internet must
be known. I guess telnet is an option since it is blocked at the firewall.
Next question/problem is, if I create an account for somebody to use when
connecting to the system, I must put their public key in their home
directory, can it be done the reverse? In other words can I provide them
a key for the system and if they don't have that key they can not connect
to the system.
Thanks, Jeff
More information about the fedora-list
mailing list