[Info-vax] ssh, variant ssh ports, and DNS
Stephen Hoffman
seaohveh at hoffmanlabs.invalid
Fri Jul 5 18:37:13 EDT 2019
On 2019-07-05 21:34:04 +0000, Grant Taylor said:
> On 7/5/19 3:02 PM, Stephen Hoffman wrote:
>
>> https://gist.github.com/taylor/1372925
>
> Oh wow. That looks like it's trying to be a wrapper for the ssh command.
There are various other examples around.
Port knocking is another approach sometimes used:
https://wiki.archlinux.org/index.php/Port_knocking
I've found a mid-grade firewall with an embedded VPN server to
generally be a better approach than exposing an ssh server whether
default or non-default port, though. Prices on those devices keep
dropping.
Among the commercial offerings, I've worked with the ZyXEL ZYWALL USG
series, among others. Various other vendors and models are available.
Open-source firewalls or host-based VPN servers with iVPN, OpenVPN,
SoftEther, etc., configured and running can also be options, depending
on requirements and budgets and related.
OpenVMS doesn't have an embedded L2TP/IPSec VPN server, though various
other server operating systems do offer that. (What info Process has
available for MultiNet doesn't indicate support for L2TP/IPsec, for
those using that client.)
And if you're inclined:
https://nullprogram.com/blog/2019/03/22/
--
Pure Personal Opinion | HoffmanLabs LLC
More information about the Info-vax
mailing list