Here's what I'd do for a secure personal use only system: 1. Start with a minimal installation as Robert suggested, changing passwords/usernames, and installing only what is required. 2. Setup my user to use ssh key pair authentication <https://help.ubuntu.com/community/SSH/OpenSSH/Keys>. 3. Confirm it works. 4. Disable ssh root login, and password authentication <https://help.ubuntu.com/community/SSH/OpenSSH/Configuring#Disable_Password_Authentication> . 5. Setup iptables to disallow all connections from any host except localhost, but open ssh to almost any host. 6. Then, on the local machine run: ssh -L 8888:localhost:8888 <username>@<host> to set up port forwarding. 7. BTsync would then be directed to connect to localhost:8888. Backups would run as long as the ssh tunnel is active. You may have to mess with the ports used to keep the copy of BTsync running locally from interfering with the port forwarding.
- James On Sunday, December 7, 2014 5:24:23 PM UTC-6, Tommi wrote: > > Hey, > > I am using the BBB for backup (via BTSync, this also gives me some > troubles lately, but that is a different story...). I am thinking of > bringing the BBB to work (at a university) to get a real off-site backup. > However, I am not sure what steps I should take in order to make sure > nobody can access my files there. So my questions are: > > 1) What should I do to make sure it is secure? I think I would even be > happy only to access it via USB and the webserver of BTsync (port 8888) > > 2) What services could I shut off? I don't need the GUI, the webserver, > could probably lock down many ports and other services I do not even know > that they are currently running... > > 3) Potentially I could also hook the BBB to my computer via USB and share > Internet with it. Would that be a more secure option? > > Thanks > Tommi > > Ps: I tried to search the group/internet, but interestingly it seems not > to be a big question out there... > -- For more options, visit http://beagleboard.org/discuss --- You received this message because you are subscribed to the Google Groups "BeagleBoard" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
