Skip to content
Brand Logo

BSD Cafe Billboard
  • CiotBSDC

    SSH port knocking with OpenBSD 7.9

    OpenBSD openbsd ssh port-knocking
    1
    2 Votes
    1 Posts
    17 Views
    CiotBSDC
    Port knocking is mostly a bad idea. But people keep wanting to do it, for some false sense of security. If you don't consider it a security control but a way to keep garbage out of your logs, it might be valid. In my case I'm using an old USG Pro 4 running OpenBSD as my firewall and I'd prefer to avoid writing stuff to the logs, as I'd prefer the flash not to wear out sooner than needed, definitely not thanks to background radiation on the internet. https://dgl.cx/2026/06/ssh-port-knocking-with-openbsd
  • CiotBSDC

    Speeding up data transfer with tar and SSH

    World streaming tar ssh
    1
    0 Votes
    1 Posts
    11 Views
    CiotBSDC
    Speed up file transfer by streaming tar through an SSH tunnel. https://cromwell-intl.com/open-source/tar-and-ssh.html ping: https://mstdn.social/@conansysadmin/116725222021196139
  • bastillebsd@fosstodon.orgB

    Pro tip: set `UseDNS no` in your sshd_config to disable reverse DNS lookups for every single ssh connection to your host.

    World freebsd ssh dns
    1
    0 Votes
    1 Posts
    0 Views
    bastillebsd@fosstodon.orgB
    Pro tip: set `UseDNS no` in your sshd_config to disable reverse DNS lookups for every single ssh connection to your host.It provides no filtering or validation purpose, afaik, and seems to only generate excess DNS traffic.This lesson brought to you by the 66k DNS lookups in the past 24hrs from a single public facing forgejo jail.#FreeBSD #SSH #DNS