Immortal ghosts from the past

Started by MrCCL, July 23, 2016, 05:10:42 PM

Previous topic - Next topic
Print
Go Down Pages 1 2 3
User actions
August 20, 2016, 02:18:10 AM #30
On the SSH auth on LAN for installer. Maybe there is a way to dispatch a unique ssh key or pass rather than using a static password. not sure how though.  I'll ponder.

BUT I LOVE IT!!! Great idea Y'all.
September 22, 2016, 10:12:12 PM #31
Since someone asked for a test ISO for a different feature, here is one that incorporates the SSH installer ideas that were affectionately crafted by this very thread:

https://pkg.opnsense.org/snapshots/OPNsense-17.1.a-LibreSSL-cdrom-amd64.iso.bz2

;)
September 23, 2016, 07:08:14 PM #32
thank you
July 22, 2020, 02:20:42 PM #33
Well, there is nothing secure about telnet.
Much like FTP isn't save. All traffic is unencrypted. SSH is, but unless you really need it you don't enable it on a firewall. Unless you have the management port in a separate VLAN.
ทีเด็ดบอลเต็ง
And your client connects to a machine in that VLAN which is then the only machine allowed to connect to that firewall. Or other network components. At least, in a production environment it's how I would go for it. Everything you need to do, you can by using the webconfig page.
So why do you want SSH enabled by default? Nice for a server, not an appliance like OPNsense.
July 22, 2020, 03:15:21 PM #34
Talk about immortal ghosts from the past, replying in a topic to which the last comment was made 4 years ago ;-)

SSH is not enabled by default (anymore).
Hobbyist at home, sysadmin at work. Sometimes the first is mixed with the second.
Print
Go Up Pages 1 2 3
User actions