is ssh safe? I'm a complete newb at IT and since I do programming id love to learn more about IT, so since I don't know where to start i'm starting here! Also, what are the keys for? Do I need them?
ssh is relatively safe (no such thing as 100% secure), example don't use username and password as this would mean sending them over the network and could be vulnerable to man in the middle attack. So using keys is safer as then you have a public and private key exchanges so encrypted authentication is sent.
@@TipsForITPros no the ssh channels is crypted, man in the middle attack is not the problem. The problem with ssh password authentication is the brute force attack. Ssh daemon don't control how many time the client give wrong credential, to mitigate the problem external program is needed as fail2ban. I am a senior unix sysadmin by over 20 year and i never see a ssh server using ssh-keys compromised.
@@ActisOreglia OK lets me clear, just because you haven't seen it doesn't mean that it doesn't exist. With that said I agree the risk is lower but not zero. And yes fail2ban is one option that slows them down. In addition most possble attacks require older version of SSH sofware or failure to enable key check etc, but at the same time if keys are stollen then you have the same effect as having password123. www.ssh.com/academy/attack/man-in-the-middle www.gremwell.com/ssh-mitm-public-key-authentication The real message I am getting at is check the keys in the config "StrictHostKeyChecking Yes" and rotate them from time to time, and above all else keep the keys safe. And keep eyes open for zero day exploits.
Hi. Does this SSH feature only work in Windows 10 Pro? I'm running Home and back in March this year I installed both client/server successfully but to date, I am unable to connect to physical or virtual machines using SSH. The same error is "permission denied". I followed another tubers vids here and he referenced security/group policy settings in his vids. When I tried this I was missing his settings because he is using Pro. I haven't found any vids here making reference to anything about the Windows machine security/group policy settings being necessary to use SSH, nor using only Pro. Appreciate any help. Thank you! =).
The SSH feature isn't linked to the edition of windows only the build, I think it came in with 1803 build if my memory is right, currently, I'm on build 1809 Honestly, I found it a bit buggy and move over to OpenSSH installer was much easier, neither of them needed any group policy settings changes. ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-XCtdkr6FfLU.html
Installation of OpenSSH For Windows Server 2019 and Windows 10: docs.microsoft.com/en-us/windows-server/administration/openssh/openssh_install_firstuse
i thought i had the same issue. after installing, i was missing the ssh directory in the %programdata% folder. after restarting, i found that directory and inside i found a writable sshd_config file. apparently, the one inside the openssh folder is generated if the server can't find one in the %programdata% folder. i am having issues connecting from an external IP though. Fowarding ports through the router and through virtualbox to the guest kept giving me connection refused prompts even after temporarily disabling my firewall on the windows machine.
Thanks for the info, did a little testing and was able to get the keys running after some quick changes. now as for your problem, at what point is the ssh not working, from host to guest or from the router to host
@@TipsForITPros from host to guest. I can see the packets coming in to the host. Update: I tried bridging my guest and that worked but I want to know why I couldn't see them before. lol.
@@SpartanDB There 5 types of network in Virtualbox, only two use an IP to IP "host-only" and "Bridged" if you are using NAT or NAT Network you need to setup the port forwarding. there is a 5th kind called internal that I never use that allows only Guest to Guest. I personally use the NAT Network in most cases and port forwarding.
Hahaha never been called that before, but I do have a deep voice, hence I don't do long video's as I'd like not to end up on someone's sleeping play list.
I believe what you meant to say was: "To be honest, where are these people come from? who are they giving this instruction too? can anyone understand and follow anything?" Now since your comment was not directed as to who these people mean, I have to ask do you mean we RU-vidrs? or comments on the video's