Security Basics mailing list archives
Re: Openvpn and ssh
From: NewYork User <newyorkuser () gmail com>
Date: Wed, 18 Jan 2006 09:49:02 -0500
You can also look at the SSL-Explorer (Open Source SSL VPN) if you have multiple users. This works very well and integrates to your AD as well (can have it's own database also). You can set security for different users to use different programs. Installation is a breeze and I love it. It installs a web server and authentication is PKI based. All you need is a web browser on any machine to connect to your server at home. It installs a java applet from the browser first time. After that you are all set to connect securely. http://www.sshtools.com/showSslExplorer.do HTH On 1/17/06, Nick Owen <nickowen () mindspring com> wrote:
Juan: If it is just you connecting, stick with SSH. It's plenty secure. Disallow root ssh access. If you're looking to roll out secure access to a larger number of users, look to openvpn. It will be easier to configure for the general user base. In terms of relative security between the two, I can't really say, it would probably come down to how you have them configured, your authentication methods, admin practices, etc. HTH, Nick Juan B wrote:Hi, Can someone please explain to if open vpn and vpn in general is more secure then using SSH to conect for example to my server at home? and if yes why is that? Thanks, Juan-- Nick Owen WiKID Systems, Inc. 404.962.8983 (desk) 404.542.9453 (cell) http://www.wikidsystems.com At last, two-factor authentication, without the hassle factor Now open source: http://sourceforge.net/projects/wikid-twofactor/ --------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
--------------------------------------------------------------------------- EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE The Norwich University program offers unparalleled Infosec management education and the case study affords you unmatched consulting experience. Tailor your education to your own professional goals with degree customizations including Emergency Management, Business Continuity Planning, Computer Emergency Response Teams, and Digital Investigations. http://www.msia.norwich.edu/secfocus ----------------------------------------------------------------------------
Current thread:
- Openvpn and ssh Juan B (Jan 16)
- Re: Openvpn and ssh Baptiste Malguy (Jan 17)
- Re: Openvpn and ssh Nick Owen (Jan 17)
- Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Ebeling, Jr., Herman Frederick (Jan 20)
- Re: Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Jeffrey F. Bloss (Jan 20)
- RE: Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Ebeling, Jr., Herman Frederick (Jan 20)
- Re: Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Christos Triantafyllidis (Jan 20)
- RE: Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Ebeling, Jr., Herman Frederick (Jan 20)
- RE: Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Ebeling, Jr., Herman Frederick (Jan 23)
- Why is that when an E-Mail is sent via an E-Mail client it's altered, but not if it's sent via the web site? Ebeling, Jr., Herman Frederick (Jan 20)
- Re: Openvpn and ssh NewYork User (Jan 20)