IPtables manager uses /etc/services port definitions to keep SSH open when SSH is not running on 22

skalenetwork / node-cli

A command line tool to setup, register and maintain your SKALE node. Written in Python.

https://skale.network

GNU Affero General Public License v3.0

20 stars 7 forks source link

IPtables manager uses /etc/services port definitions to keep SSH open when SSH is not running on 22 #531

Closed gaia closed 1 year ago

gaia commented 3 years ago

it would be VERY helpful if the component managing iptables used /etc/services to look for which port to keep open for SSH, instead of assuming 22. we don't use standard SSH ports and thus we have to resort to cron every 5 minutes making sure that the alternate port is open.

We audit using lynis: https://github.com/CISOfy/lynis/issues/604#issuecomment-442460364

┆Issue is synchronized with this Jira Task

badrogger commented 2 years ago

2.1.3-beta.0

badrogger commented 2 years ago

Test:

Change sshd port on your server (https://linuxconfig.org/how-to-change-ssh-port-on-linux).
Make sure you still have ssh access after node installation.

OleksanderSalamatov commented 1 year ago

Approved to be working on node-cli: 2.1.3-beta.0 Result in test case in Testrail C906