i want to remotely ssh to my home server, and I was wondering if I could just forward port 22 with disabling password login and use pubkey authentication will be safe enough?

  • Prof-Mmaa@alien.topB
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    I keep ssh on port 80, multiplexed with usual HTTP traffic thanks to sslh. Basically it’s a protocol switchboard what detects what kind of traffic reaches your server and forwards it to appropriate service. It can distinguish between SSH/HTTP/OpenVPN and a few more.

    Pros? Security wise probably nothing more that SSH already offers, but port 80 is rarely (if ever) blocked on other networks and having SSH on port that is non-standard and obscured, cuts way down on random attempts to guess the user/password combination.