ArtsAutosBooksBusinessEducationEntertainmentFamilyFashionFoodGamesGenderHealthHolidaysHomeHubPagesPersonal FinancePetsPoliticsReligionSportsTechnologyTravel

Important things to know about SSH

Updated on April 21, 2015

This is a follow-up post for the hub “Tips on Website Security - use SSH”. If you are a regular visitor of my hubs, then you may have probably read that particular article and would surely have a few questions about SSH. If you are new visitor, before reading on, it would be advisable to have a look at “Tips on Website Security - use SSH” to better appreciate the contents of this posting.

As the title implies, this post aims to explain in simple terms the important aspects of SSH. Researching about SSH is quite difficult especially for non-technical people. Looking for answers and some information about SSH is a tedious one as for sure one will encounter tons and tons of jargons. Anyway, enough with the introduction and on to the juicy and informational stuff.

In a nutshell, SSH –

  • Is a program that allows a remote computer to securely access another computer
  • Can execute commands from a remote machine (computer)
  • Can transfer files between the two interconnected computers
  • Has two available versions namely SSH1 and SSH2
  • Provides secure communications and powerful authentication

How did SSH came about –

SSH is originally intended as a secure data communication medium for UNIX systems to replace existing unsecure UNIX remote shell protocols and Telnet. Since its released, SSH has been widely accepted and used that an estimated count of two million users are using SSH.

Other OS (operating systems) that is compatible with SSH

Aside from UNIX, listed below are other operating systems wherein SSH can be seemingly implemented. Please note that some OS may be developer dependent and may contain interoperability issues:

  • Java
  • DOS
  • Macintosh
  • Windows
  • OpenVMS
  • BeOS
  • OS/2
  • Handheld devices

SSH is good against –

  • IP spoofing*
  • IP source routing*
  • DNS spoofing**
  • Manipulation of data by people in control of intermediate hosts
  • Interception of clear text passwords and other data by intermediate hosts

* IP spoofing and IP source routing are quite similar. Basically, these two type of security issue is where an IP (internet packet) is sent out by a remote host that disguises itself as a trusted host.

** DNS spoofing is where an attacker targets and forges name server records

SSH authentication –

Note: SSH may use one or more of the following for authentication:

  • Password
  • User public key – RSA or DSA
  • Kerberos – for SSH1
  • Hostbased

SSH algorithms –

The following tables summarizes the type of algorithms used by SSH for encryption and authentication. Please note that ciphers, depending on implementation, may be added (or deleted).

Difference between SSH1 and SSH2 –

Interestingly, SSH2 is not a simple version upgrade of SSH1. SSH1 and SSH2 are two totally different protocols. Listed below are the differences between the two.

  • SSH1 uses server and host to authenticate systems
  • SSH2 uses only host keys for authentication
  • SSH2 is a complete rewrite of SSH1 protocols
  • Networking implementation between two are different and not compatible
  • SSH1 and SSH2 encrypts at different parts of the packets

And now to answer the question that any reader has in mind “Which is better SSH1 or SSH2?”

SSH2 is actually a complete rewrite of SSH1 and improves security, portability, and performance.

Comments

    0 of 8192 characters used
    Post Comment

    No comments yet.

    working

    This website uses cookies

    As a user in the EEA, your approval is needed on a few things. To provide a better website experience, hubpages.com uses cookies (and other similar technologies) and may collect, process, and share personal data. Please choose which areas of our service you consent to our doing so.

    For more information on managing or withdrawing consents and how we handle data, visit our Privacy Policy at: https://hubpages.com/privacy-policy#gdpr

    Show Details
    Necessary
    HubPages Device IDThis is used to identify particular browsers or devices when the access the service, and is used for security reasons.
    LoginThis is necessary to sign in to the HubPages Service.
    Google RecaptchaThis is used to prevent bots and spam. (Privacy Policy)
    AkismetThis is used to detect comment spam. (Privacy Policy)
    HubPages Google AnalyticsThis is used to provide data on traffic to our website, all personally identifyable data is anonymized. (Privacy Policy)
    HubPages Traffic PixelThis is used to collect data on traffic to articles and other pages on our site. Unless you are signed in to a HubPages account, all personally identifiable information is anonymized.
    Amazon Web ServicesThis is a cloud services platform that we used to host our service. (Privacy Policy)
    CloudflareThis is a cloud CDN service that we use to efficiently deliver files required for our service to operate such as javascript, cascading style sheets, images, and videos. (Privacy Policy)
    Google Hosted LibrariesJavascript software libraries such as jQuery are loaded at endpoints on the googleapis.com or gstatic.com domains, for performance and efficiency reasons. (Privacy Policy)
    Features
    Google Custom SearchThis is feature allows you to search the site. (Privacy Policy)
    Google MapsSome articles have Google Maps embedded in them. (Privacy Policy)
    Google ChartsThis is used to display charts and graphs on articles and the author center. (Privacy Policy)
    Google AdSense Host APIThis service allows you to sign up for or associate a Google AdSense account with HubPages, so that you can earn money from ads on your articles. No data is shared unless you engage with this feature. (Privacy Policy)
    Google YouTubeSome articles have YouTube videos embedded in them. (Privacy Policy)
    VimeoSome articles have Vimeo videos embedded in them. (Privacy Policy)
    PaypalThis is used for a registered author who enrolls in the HubPages Earnings program and requests to be paid via PayPal. No data is shared with Paypal unless you engage with this feature. (Privacy Policy)
    Facebook LoginYou can use this to streamline signing up for, or signing in to your Hubpages account. No data is shared with Facebook unless you engage with this feature. (Privacy Policy)
    MavenThis supports the Maven widget and search functionality. (Privacy Policy)
    Marketing
    Google AdSenseThis is an ad network. (Privacy Policy)
    Google DoubleClickGoogle provides ad serving technology and runs an ad network. (Privacy Policy)
    Index ExchangeThis is an ad network. (Privacy Policy)
    SovrnThis is an ad network. (Privacy Policy)
    Facebook AdsThis is an ad network. (Privacy Policy)
    Amazon Unified Ad MarketplaceThis is an ad network. (Privacy Policy)
    AppNexusThis is an ad network. (Privacy Policy)
    OpenxThis is an ad network. (Privacy Policy)
    Rubicon ProjectThis is an ad network. (Privacy Policy)
    TripleLiftThis is an ad network. (Privacy Policy)
    Say MediaWe partner with Say Media to deliver ad campaigns on our sites. (Privacy Policy)
    Remarketing PixelsWe may use remarketing pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to advertise the HubPages Service to people that have visited our sites.
    Conversion Tracking PixelsWe may use conversion tracking pixels from advertising networks such as Google AdWords, Bing Ads, and Facebook in order to identify when an advertisement has successfully resulted in the desired action, such as signing up for the HubPages Service or publishing an article on the HubPages Service.
    Statistics
    Author Google AnalyticsThis is used to provide traffic data and reports to the authors of articles on the HubPages Service. (Privacy Policy)
    ComscoreComScore is a media measurement and analytics company providing marketing data and analytics to enterprises, media and advertising agencies, and publishers. Non-consent will result in ComScore only processing obfuscated personal data. (Privacy Policy)
    Amazon Tracking PixelSome articles display amazon products as part of the Amazon Affiliate program, this pixel provides traffic statistics for those products (Privacy Policy)