openssh Resources

Sponsored White Papers, Webcasts, and Downloads

ZDNet Resources

Chroot users with OpenSSH: An easier way to confine users to their home directories: With the release of OpenSSH 4.9p1, you no longer have to rely on third-party hacks or complicated chroot setups to confine users to their home directories or give them access to SFTP services. Vincent Danen tells you how to take advantage of this new addition to OpenSSH.; Tags: OpenSSH, Vincent Danen; Download resources 2008-06-24
Realize the flexibility of OpenSSH: Vincent Danen explains the flexibility and power of OpenSSH. With it, you can access systems remotely and securely; transfer files securely (using scp, sftp, or even rsync over ssh); execute single commands on remote systems; secure normally insecure services; and much more.; Tags: OpenSSH, Vincent Danen; Download resources 2008-06-10
Finding weak OpenSSL/OpenSSH keys: Vincent Danen reports on a recent vulnerability that affects Debian-based systems, including Ubuntu. This vulnerability caused OpenSSL to generate weak keys for anything relying on OpenSSL, including SSL certificates, OpenSSH keys, and OpenVPN keys. Here's what you need to do to protect your system.; Tags: OpenSSL, OpenSSH, Vincent Danen, Ssl/Tls, Security; Download resources 2008-05-19
7 Things Every System Administrator Should Know About OpenSSH: OpenSSH provides a powerful and flexible tool for system administrators, but like any powerful tool, without a proper understanding, its potential may be wasted or, worse, it may become a liability. This white paper provides a brief introduction to several techniques for getting the most out of this tool.; Tags: System Administrator, Global Knowledge Network Inc., Tool, OpenSSH, Productivity; White papers 2007-09-04
How do I... Create secure tunnels for client-server communication with OpenSSH?: OpenSSH offers a suite of tools for secure client-server communication, including the ability to create secure "tunnels" for any kind of client-server communication, including checking/sending e-mail or Web browsing. This How do I... introduces you to OpenSSH's secure tunneling capabilities, by demonstrating how the program can be used to create...; Tags: Client-server, OpenSSH, Client-server Communication, Servers, Hardware; Download resources 2007-05-21

Linux 101: Establish more effective security capabilities with OpenSSH: SSH uses strong encryption to protect a complete remote shell session from malicious security crackers. End-to-end security is provided from the beginning of the session until it terminates, as the client contacts the server and establishes a session-specific encryption key exchange before the username and password are even transmitted from...; Tags: Security, SSH, OpenSSH, Linux, Operating Systems, Software; Download resources 2006-07-21
Securing Communications With OpenSSH on IBM i5/OS: The OpenSSH open source product is widely used to securely access command line shells remotely. Secure SHell SSH tunneling or port forwarding capabilities allow users to establish a secure link for data traffic that otherwise flows in the clear over communication links. Additional utilities, such as scp and sftp, provide...; Tags: SSH, OpenSSH, IBM Corp., OpenSSH Open Source Product; White papers 2006-07-01

Additional Resources

Google ships open-source Web security assessment tool: The Google security team has released a free, open-source Web app security assessment tool capable of flagging vulnerabilities and potential security threats in Internet-facing applications. The tool, called Ratproxy, is described as a passive Web application security audit tool designed to analyze legitimate, browser-driven interactions with tested Web...; Tags: Google Inc., Web, Web Application, Web Security, Tool, Google Security Team, Productivity, Open Source, Security, Ryan Naraine; Blog posts 2008-07-01
Fresh off the press: iPhoneDbg toolkit hotness: The guys at Core Security just released an iPhoneDbg toolkit that should make exploit development for the iPhone much easier. This is outstanding news for all, as I think there has been a lot of concern over the quick rise of mobile devices and the new security concerns that they create. ...; Tags: Apple iPhone, iPhone Debugger, Nathan McFeters; Blog posts 2008-06-18
MobaSSH (exe): MobaSSH is a free SSH server for Windows, compatible with any ssh client (OpenSSH client, Putty). MobaSSH comes with an easy to use installer and some useful GNU utilities for monitoring and managing a remote computer silently. It also allows you to transfer files securely with scp/sftp. MobaSSH is packaged...; Tags: SSH, Mobatek, MobaSSH, Microsoft Windows, Operating Systems, Software; Software downloads 2008-06-12
Black Hat Vegas '08: Sneak peek at some of the interesting attacks we will unveil: Black Hat Vegas '08: Sneak peek at some of the interesting attacks we will unveilUnhackable: ssh with publickey passwordless loginA well-equipped Windows XP machine includes reducing the attack surface area by minimizing open ports. Installing Cygwin and configuring openssh with publickey passwordless login is the most secure option. ...; Tags: Operating systems, SSH, Linux IT-Consultant, Black Hat Vegas, Sneak Peek, attack, Black Hat; Discussion threads 2008-06-07
How to wipe data off an iPhone: In reponse to reports that personally identifiable private information can be easily swiped from used iPhones sold on eBay, the tireless Rich Mogull has cooked up a nifty way to wipe data from iPhones. Mogull admits his process is "not perfect" but it does look to be...; Tags: Apple iPhone, Mogull, Storage, Hardware, Ryan Naraine; Blog posts 2008-05-22
With the Quickness: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flaw: So, for those who haven't heard, a Debian packager modified the source used for OpenSSL on Debian based systems Debian and the whole of the Ubuntu family to remove the seed used for PRNG Pseudo Random Number Generator used when creating SSL keys. Well, HD Moore set a new record...; Tags: OpenSSL, SSH, Debian, Key, Flaw, HD, ID, Ssl/Tls, Operating Systems, Open Source, Security, Software, Nathan McFeters; Blog posts 2008-05-14
Security Update 2008-002 released: Apple yesterday released Security Update 2008-002 (50.5MB) for Mac OS 10.4.11 and 10.5.2. The update, which appears in Software Update, is recommended "for all users and improves the security of Mac OS X." The previous 2008-001 Security Update is incorporated into this update and a restart is...; Tags: Apple Inc., Apple Mac OS, Security, Operating Systems, Software, Jason D. O\'Grady; Blog posts 2008-03-19
Someone get me rewrite: Apple delivers monster security update for OS X: Someone get me rewrite: Apple delivers monster security update for OS X" *gasp* I thought Macs were secure and superior and invulnerable!"--any Mac user, blind fool, or someone who needs to get laid more than I.Gasp!I thought Macs were invulnerable! Haha!!!!!Actually, they're not. Anyone with any knowledge of security...; Tags: Security administration, Patches, Operating systems, monster security update, Apple Inc., Apple Mac OS X, security update, security; Discussion threads 2008-03-18
Someone get me rewrite: Apple delivers monster security update for OS X: Apple delivered a security update for Tiger and Leopard Tuesday with at least 80 patches addressing multiple vulnerabilities. You know it's a big patch haul from Apple when you read the advisory and: You're not sure where to begin; You're IMing fellow security...; Tags: Security, Apple Macintosh, Mac OS X Server, Server, Apple Inc., Apple Mac OS X, Apple Mac OS, Operating Systems, Desktops, Software, Hardware, Larry Dignan; Blog posts 2008-03-18
Router Backdoors: Hacked by Chinese Part 2?: Router Backdoors: Hacked by Chinese Part 2?Typo AlertCite, not Site.Typo Alert: "They site no cases of any backdoors in any current routers sold from China."Correction: "They cite no cases of any backdoors in any current routers sold from China."Sorry to be nitpicking about typos, but this is probably because bloggers...; Tags: Routers & switches, Network technology, NETWORKING, router, Chinese Part 2, Router Backdoors; Discussion threads 2008-03-06
AVG Antivirus Free Edition (Gallery: Free and essential Windows apps): AVG Antivirus Free Edition (Gallery: Free and essential Windows apps)Stupid questionHow is Paint.NET superior to Windows Paint? The blurb doesn't really say.RE: AVG Antivirus Free Edition (Gallery: Free and essential Windows apps)The best there is - I killed Norton on my computer and all of my clients...; Tags: Operating systems, NETWORKING, media player, AVG, essential Windows app, AVG Antivirus FREE EDITION, AVG AntiVirus, Windows App, Gallery, Microsoft Windows; Discussion threads 2008-02-06
First iPhone Trojan in the wild: First iPhone Trojan in the wildSo let me get this straight...So let me get this straight, first you have to jail break the iPhone, then you have to download the program, then you have install it onto the iPhone. It also doesn't hurt the iPhone in any way, but...; Tags: Spyware, Spyware, adware & malware, Viruses and worms, SECURITY, Cyberthreats, Microsoft Windows Mobile, trojan horse, Apple iPhone, iPhone Trojan; Discussion threads 2008-01-08
One-stop open-source support launched in U.K.: One-stop open-source support launched in U.K.Solving Half the Equation is Still Only Halfway ThereOpen source projects benefit from the public and collaborative nature of the community of users and developers associated with the project. The most popular open source projects are very stable, being used and debugged by tens of...; Tags: open source, open source project; Discussion threads 2007-11-16