Usually, when I want to connect to my LAN from the Wild Wild World, I use a VPN connexion. But there are times when it is not possible ; especially now that my work LAN has the same IP range as my home LAN… An alternate way to access my unpublished home services from outside is to use SSH tunnels.
What you need is an SSH server on the LAN that you want connect to. The SSH server has to be able to connect to the LAN server you aim to connect to. Then, all you have to do is a bit of “Port Forwarding”.
Continue reading “Terminal Server (TSE) connexion through SSH”
In VMware ESXi 5, SSH is enabled through the “Configuration / Security Profile / Services” section. When you connect using the root user, you have to specify the root password. If you want to use SSH keys, the only thing you have to do is copy them, over ssh, to a dedicated directory:
# cd ~/.ssh
# scp id_rsa.pub authorized_keys root@esxi:/etc/ssh/keys-root/
You can now connect to the ESXi using your SSH keys (and the `ssh-agent`). So simple!
Source: SSH Keys & Lockdown Mode Caveat in ESXi 5
OpenBSD is really easy to install.
It’s not shinning, but it asks for a few questions and only takes a couple of minutes to get a working system.
Continue reading “Back to the sea ; the OpenBSD installation, episode II”
No secrets here, just quick notes on how to generate bigger (safer ?) SSH keys.
Server keys generation:
# /usr/bin/ssh-keygen -t rsa1 -f ssh_host_key -N '' -C "tumfatig.local" -b 4096
# /usr/bin/ssh-keygen -t dsa -f ssh_host_dsa_key -N '' -C "tumfatig.local" -b 1024
# /usr/bin/ssh-keygen -t rsa -f ssh_host_rsa_key -N '' -C "tumfatig.local" -b 4096
Personal key generation:
# ssh-keygen -t rsa -C "email@example.com" -b 4096
This should strengthen the key exchange phase in the cost of more intensive CPU usage during this phase.
- How do I generate an RSA key?
- How To Generate SSH Keys (…)