Open Source Notebook Propaganda for a
Geek Friendly Future

Recent entries

• Kindle love?
• Press release reporting
• Published at Sitepoint (typography article)
• Spammers passing as M2 users
• Delete Win XP wallpapers

Securing all remote connections

I have been relying heavily on the insecure File Transfer Protocol (FTP) for some time. But having been intercepted and watching my websites and computers being compromised again and again have finally got to me. I am now going the much more secure way of using Secure Shells (SSH).

The FTProblem

FTP transmits authentication data using nothing but plain text. It also transfers the data it self without even attempting to protect it. It is an easy prey for any malicious cracker.

It is not that I am careless with my passwords or anything. But I have fallen victim to having my data streams being intercepted no less then eight times in two years!

Secure Shells

SSH is based on the same principles as Pretty Good Privacy (PGP). It encrypts the authentication data and file stream using a public–private key encryption mechanism. Booring details aside, SSH really makes an effort where FTP just falls over and surrenders to anyone who wants to have a go with it.

Being so used to graphical user interfaces, it is hard to work with the command line tools provided by openssh. However security has to come first. I have experienced that first hand. It is much better dealing with the slight inconvenience of using the command line than the enormous inconvenience of cleaning up a system after a cracker.

Securing the rest

I am already using Secure Socket Layer (SSL) (along with PGP encryption) to secure my instant messaging and email communications. I assume those ways of communication still are as secure as I can possibly get them.

The only gaping wholes left are social networks and my web hosts web based managing interface. The latter which transmits my authentication data over an insecure connection. I hope to have dealt with that one within new year. Social networks is a whole other realm….

Copyright © 2007 Daniel Aleksandersen 2007-12-21 at 09:12

« A Tiny Tiny problem | Home | Blogging is killing the article »

Related entries

• Instant communication and the lack of privacy
• Developing plans for Firefox 3
• Online privacy, a joke?
• OpenID ≻ Plastic ID Cards
• Why care about choosing a distribution!?
• Fraud protection or privacy intrusion?

Stay informed

Get a free subscription to new entries in the Open Source Notebook!

• Subscribe to news feed
• Subscribe by email
• Subscribe via Bloglines

Navigation

• Home
• Arhives
• Subscribe

• About
• Contact

Runbox

• 10 GB email storage,
• 1 GB file storage,
• 100 MB attachment limit,
• your own domain,

...and more! Get your own premium email for just 49 USD per year!

Categories

• Communication (24)
• Conquering the Command Line (12)
• Gadgets (13)
• K Desktop Environment (25)
• Multimedia (23)
• Online Privacy (9)
• Open Formats (24)
• Reviews (6)
• Shape of the World (28)
• Software (25)
• Ubuntu and Debian Watch (12)
• User Interface (26)
• Your Rights! (8)

Archives

The archive keeps a record of all entries that have ever been published! Have a look back in time, and see what was going on!

License

This blog entry text is licensed under a Creative Commons Sampling Plus 1.0 License. The license explained, and legal notes.