Show Posts
1
General Discussion / Re: Immortal ghosts from the past
« on: July 22, 2020, 02:20:42 pm »
Well, there is nothing secure about telnet.
Much like FTP isn't save. All traffic is unencrypted. SSH is, but unless you really need it you don't enable it on a firewall. Unless you have the management port in a separate VLAN.
ทีเด็ดบอลเต็ง
And your client connects to a machine in that VLAN which is then the only machine allowed to connect to that firewall. Or other network components. At least, in a production environment it's how I would go for it. Everything you need to do, you can by using the webconfig page.
So why do you want SSH enabled by default? Nice for a server, not an appliance like OPNsense.
Much like FTP isn't save. All traffic is unencrypted. SSH is, but unless you really need it you don't enable it on a firewall. Unless you have the management port in a separate VLAN.
ทีเด็ดบอลเต็ง
And your client connects to a machine in that VLAN which is then the only machine allowed to connect to that firewall. Or other network components. At least, in a production environment it's how I would go for it. Everything you need to do, you can by using the webconfig page.
So why do you want SSH enabled by default? Nice for a server, not an appliance like OPNsense.