That way the only way to get in is with a public key that youģ) Then you want the latest sshd server so that all known vulnerability Port that everyone also tries to connect to.Ģ) Reject password/interactive login. It probably is a good idea to research a bit so youĭon't accidently pick a port that's a popular malware secret control backdoor So the chance some one tries to break into your sshd server wouldĬorresponding be less. Some one hits port 46826 (I've just made it up) is much less than port 22. What I did is to reconfigure my sshd server to:ġ) Use non standard port. > So tell me, what is to prevent any person, other than me, from connecting For instance,ĬonnectBot does this for "Local" port forwards to avoid exactly this issue.Īll connections from off-PC to VNC would then have to be through the Server), which excludes connections from the outside. ![]() See if your VNC server binds its listening ports to 127.0.0.1 so anyĪttack would have to be code actually running on your PC (like the SSH > someone simply connect trough ANY open port without using my SSH tunnel? > kind of direct access to open ports on my Windows PC? Coultn't > VNC and POOF!, they're in! Also, how does this SSH tunnel prevent ANY > behind them and will discover that my non-standard port connects to > good hacker will keep pounding my open ports to try to discover what's > tunnle because my Windows PC still has a port open for VNC, and any Seems to me it doesn't matter that I connect through an SSH > the VNC password, which we all know to have been hacked quite a long This leaves the only protection for the Windows PC to be > Windows XP Home Edition? And the Android VNC Viewer doesn't support > on my Windows XP machine to work with MS login - maybe because it's > VNC password if I don't use MS login? I can't get the UltraVNC server > How does using this SSH tunnel protect my computer from hacking the But when I tried to do it this way on my Nexus 7 with the tunnel I created in ConnectBot the connection is refused. On my Linux PC I set my VNC viewer to go to "localhost:myport", but when you use a non-standard port (non-5900) for VNC it gets a bit tricky in that it adds what you specify in "myport" to the 5900, and that should add up to the non-standard port you are using. ![]() Thus, the firewall on the Windows PC and the port forwarding on my router are shown to be set properly. I used another PC (a Linux PC) to test VNC through an SSH tunnel over the internet with my non-standard ports, and the port forwarding in my router does work, and the tunnel does work - on that Linux PC. But when I try to use the ConnectBot SSH tunnel for my VNC Viewer to connect to the PC it says "connection refused". I installed android-vnc-viewer 0.5.0 on my Nexus 7 and successfully connected (without the ConnectBot SSH tunnel) over the internet through my router to my PC using the non-standard port. I also have UltraVNC server installed my Windows PC - using non-standard (non-5900) port and have set the Windows firewall to accept my non-standard port and configured my router to forward the non-standard port to the Windows PC. I installed ConnectBot on my Nexus 7 and successfully connected to my Windows PC over the internet through my router using the non-standard port. I also have my router configured to forward this non-standard port to that PC. I have my windows firewall configured to accept this non-standard port. ![]() I have openSSH Server installed on a Windows XP PC using a non-standard (non-22) port.
0 Comments
Leave a Reply. |