dhis2-users team mailing list archive

Thread
Date

Re: Secure remote access

To: Lars Kristian Roland <lars@xxxxxxxxx>
From: Jason Pickering <jason.p.pickering@xxxxxxxxx>
Date: Fri, 9 Mar 2012 11:52:46 +0200
Cc: "dhis2-users@xxxxxxxxxxxxxxxxxxx" <dhis2-users@xxxxxxxxxxxxxxxxxxx>
In-reply-to: <CANjCRy-D1fg-BXjNQO+kj38=9eR97_xBse3wo0SaEQWfy7ey7Q@mail.gmail.com>

>
> I'd use HTTPS/SSL for web access and definitely use SSH (preferably using
> both certificates and passwords) for server access (for people administering
> the linux installations).
>

SSH is a must. I would also move it to a non-standard port, and
disable remote access with passwords, and disable the root user from
being able to login over SSH. You will still get a lot of bot attacks,
but using certificates (with a password) will greatly increase the
security of the server.

Follow ups

Re: Secure remote access
From: Bob Jolliffe, 2012-03-09

References

Secure remote access
From: Mark Spohr, 2012-03-09
Re: Secure remote access
From: Jason Pickering, 2012-03-09
Re: Secure remote access
From: Mark Spohr, 2012-03-09
Re: Secure remote access
From: Jason Pickering, 2012-03-09
Re: Secure remote access
From: Lars Kristian Roland, 2012-03-09