Options for hosting servers in my basement?

[David Ohlemacher]

I bought a Linode server for personal use.  I like it very much.  $20/mo
for a basic xen server that I have complete control over, currently debian
6.  Since it was so useful, my company started paying for it.

Someone mentioned their sshd ports being attacked.  Combine knockd and
fail2ban with disabled root and disabled passwd authentication and your
server will be pretty secure.

knockd  lets you keep your sshd port closed most of the time.  A ssh client
has to 'knock' to be let in.   Knocking means simply connecting to N ports
of your choosing in the right order and within a prescribed time period (30
s or so).  Once that is done the sshd port is opened for a short time
letting you in.

fail2ban bans all IPs that attempt and fail to log in some number of times.

I use scripts (expect) to ssh in or establish my ssh tunnel with a key so I
never make a typo and can set the ban count to 2.  My logs are much cleaner
and shorter.

-d
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mail.gnhlug.org/mailman/private/gnhlug-discuss/attachments/20120703/c8e30f0b/attachment.html