trying to set up remote ssh for my bedroom homelab, only ssh tho. i dont think i need a vpn like wireguard atm. ssh keys should be fine right?have fail2ban as well (as precaution)
>>107746555It's similar to working with a VPS except your home internet being compromised could be worse. I prefer zerotier-cli so I don't have to open any ports, IPs should stick as well which helps if you have dynamic IP.
>>107746555i have never gone keys just type it
>>107746555>ssh keys should be fine right?Yes, assuming you use strong algorithms and keys, and keep your software up to date.>fail2banGood. You can also whitelist only the IP blocks you tend to connect from for additional security. For example, there is no need to even allow a foreign IP address to connect to port 22 if you never need to reach it from abroad.
>>107746555You'll be needing some more precautions. Try Tailscale instead.
>>107747052>which helps if you have dynamic IP.hmm, wutI've been trying to setup my own cloud storage and this has been the only reason I scrapped the idea. How do you deal with a changing IP address?
God damnit why is modern /g/ so fucking incompetent?>you need a third party cloud service to securely access your home server from the internetNo>HOW DO I INTO SSH!?I dunno retard. Maybe change the default port and log-in with a key like everyone else?>The indians will haxxor my LAN!!No they won't. You can do this amazing thing called banning the entire poo sub-continent IP range along with all of IPv6 addresses, chink land and the rest of world that isn't Japan+America+maybe the UK>Dur hur how do I do these amazing things?I dunno. Maybe dig an old shitty PC with two CAT5 ports out of the local dumpster. Install OpenBSD and read the pf man page? Might be a good place to start.I mean wtf. This entire board is basically shills and retarded children repeating what shills say in youtube videos these days. OP wants to log-in with ssh and you have retards shilling Tailscale of all things. Next will be a dumb faggot praising NordVPN.Read a fucking man page you niggers.
>>107746555One of the cool underrated uses for Tor is that you can use it to run your SSH server as a hidden service so you can connect to it through a .onion URL without needing to open any ports or touch your firewall settings at all, and nobody else will know it exists and won't be able to find it if you don't share the URL with anybody
>>107747339This.
>>107747309You need a domain name and setup dynamic DNS.
>>107747339>I dunno. Maybe dig an old shitty PC with two CAT5 ports out of the local dumpster. Install OpenBSD and read the pf man page? Might be a good place to start.What? Why? You sound like a 50 yo autistic virgin. I hope this is just bait.
>>107747339Tailscale is comfy and I don't want to forward ports from my LAN though.
