[PVE-User] Security question

Andreu Sànchez i Costa andreu.sanchez at iws.es
Wed Jun 5 09:41:15 CEST 2013 

Depending on your scenario you could use an iptables rule for allowing ssh thru known ip addresses, setup an ipsec tunnel, or for example a simple knock-knock, ah, and you could use ssh keys too. 



----- Missatge original -----

De: "Adam Hunt" <voxadam at gmail.com> 
Per: pve-user at pve.proxmox.com 
Enviats: Dimecres, 5 de Juny 2013 9:23:26 
Assumpte: [PVE-User] Security question 

Warning: I'm new to Proxmox and pretty new to virtualization in general. 

I am looking at using Proxmox on a leased box in a rack somewhere for some personal projects. One thing that I've noticed about Proxmox is the use of root, access is available via both SSH and the web interface. Is this required for Proxmox to function properly? I've always been taught that it's a bad idea to expose root directly via SSH not to mention some web interface. 

If I end up using Proxmox on my leased server what is the best way to secure the interfaces? 

By the way, the leased box I am using only has a single NIC and IP at the moment. I can get more IPs if I have to but I'm limited to a single NIC. 

_______________________________________________ 
pve-user mailing list 
pve-user at pve.proxmox.com 
http://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-user 



-- 
.................................................................................................................................. 
Andreu Sànchez i Costa ( G PG key: 06AE46D1) 
Departament de Sistemes 



c/ Segria 34, 25006 Lleida 
Tlf: (+34) 973 23 41 06 & E-mail: andreu.sanchez at iws.es & Web: www.iws.es 
.................................................................................................................................. 
RESPECTEM EL MEDI AMBIENT: 
Abans d'imprimir aquest correu electrònic penseu bé si és necessari fer-ho. El medi ambient és cosa de tots. 
RESPETEMOS EL MEDIO AMBIENTE: 
Antes de imprimir este e-mail, piense bien si es necesario hacerlo. El medio ambiente es cosa de todos. 
PLEASE, RESPECT THE ENVIRONMENT: 
Think twice before printing this e-mail. Environmental protection is in our hands. 

CONFIDENCIALITAT: 
La informació inclosa en aquest missatge és confidencial i per a us exclusiu del destinatari. 
Si heu rebut aquest missatge per error, li agrairem que ens ho comuniqui i l'elimini. 
CONFIDENCIALIDAD: 
La información contenida en este mensaje es confidencial y para uso exclusivo del destinatario. 
Si ha recibido este mensaje por error, le agradeceremos nos lo indique y proceda a su eliminación. 
CONFIDENTIALITY: 
The information contained in this message is confidential and for the exclusive use of its addressee. 
If you have received this message in error, please notify us and delete it from your system. 
.................................................................................................................................. 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.proxmox.com/pipermail/pve-user/attachments/20130605/4817e9eb/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: logoIWS.png
Type: image/png
Size: 5682 bytes
Desc: not available
URL: <http://lists.proxmox.com/pipermail/pve-user/attachments/20130605/4817e9eb/attachment.png>

More information about the pve-user mailing list