- How to secure your Debian server by changing the SSH port number (read tutorial here)
- How to secure your Debian server by setting up SSH for passwordless login via public- and private-key cryptography (read tutorial here)
- How to secure your Debian server by updating the buggy openSSH Debian package (read tutorial here)
- How to simplify Debian administration by setting up a graphical interface (GNOME) to be used via VNC connection thru an SSH tunnel (read tutorial here)
server$ apt-get install firestarter(installs the firewall)
server$ firestarter(starts firestarter for first configuration)
Exitthen (here because of german screen shots:
Then the main Firestarter window will open. Since we want to come back later on after having logged out of our server, we have to open at least one port for our VNC through SSH tunnel. Go to register
Rules(here because of german screen shots:
add a rule (here because of german screenshots:
Regel hinzufügen) for your specific ports.
V. Which portsThe following list is only an example you know best which services your server runs.
- the normal VNC port will be 5901 or 5900 - since VNC communication is not encrypted on that port, we strongly recommend to only use a SSH tunnel for VNC sessions.
- in case you followed our recommendation to use an SSH tunneled VNC connection you only need to open port 22, port 5901 or 5900 is not necessary
- in case you followed even our recommendations to change your SSH port number to somewhat different, open that port instead (you may have a look at your
/etc/ssh/sshd_configif you forgot the port number)
- if you're running an apache with a website, you probably need port 80, aswell
- click on
Apply Rulerule (here because of german screenshots: