On Tue, 2006-02-07 at 09:41 -0700, James Gagnon wrote:
> -----Original Message-----
> From: centos-bounces@xxxxxxxxxx [mailto:centos-bounces@xxxxxxxxxx] On Behalf
> Of John Hinton
> Sent: February 7, 2006 9:29 AM
> To: CentOS mailing list
> Subject: Re: I appear to be attacking others
>
> > I find it easier to deny all and then allow the very few who actually
> > use ssh. But, this can get you into trouble if you suddenly find you
> > need to shell in when out of town. A backdoor somewhere is a good idea!
>
> > John Hinton
>
> If its on a network with windows boxes like mine is, I just remote desktop
> into a windows XP box then I can VNC or SSH into the linux box locally. I
> was under the impression that using the local network to connect to your
> linux box was a bit more secure than going through the WAN. But of course,
> not every linux server is setup on a network where a windows XP box is on
> the same LAN. Just one little step I do to help security since my server is
> at home. But then again... one has to wonder how secure remote desktop for
> windows really is... guess it's a win/lose situation =)
>
>
heh - if I was betting on security ... I would do the opposite. Allow
secure access to the linux box (NX/FreeNX) and then open the XP stuff
(using rdesktop).
I don't ever let the Internet actually touch an XP box with remotely
initiated traffic :)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.centos.org/pipermail/centos/attachments/20060207/fec7cd56/attachment.bin
