RE: Gridcoin PSA - Check your wallet security!

You are viewing a single comment's thread from:

Gridcoin PSA - Check your wallet security!

in gridcoin •  5 years ago  (edited)

If you need remote access to the machine with the wallet, then please ensure that SSH, RDP, and/or VNC are behind a firewall and use a VPN connection to get to them, rather than exposing the services directly. This requires a firewall, or internal machine that supports VPN software. (If you use a machine internal to your network for VPN, you port forward the VPN port(s) (ONLY!) to your internet address.)

None of these three services should be exposed to the outside directly on the Internet unless ABSOLUTELY necessary, and if they are, I would not host a wallet on them at all.

It is a good idea if you need SSH exposed directly on the internet to use an extremely strong passsword, and/or certificate based authentication. I would also limit the IP range of accepted connections to that service if your access is from known IP range(s).

It is also a bad idea to use cloud-based third-party remote access services.

Authors get paid when people like you upvote their post.
If you enjoyed what you read here, create your account today and start earning FREE STEEM!
Sort Order:  

For anyone running a server, here's a SSH certificate authentication tutorial. I personally think that everyone with public facing ssh should do it.