Reasonably secure remote GUI access with SSH and NoMachine

"I often need to remotely access a machine at home to do some form of work, and while I find that most times a simple SSH connection is sufficient, now and then I find it helpful to be able to use or test an application with a GUI. To allow remote access, while maintaining a reasonable level of security I implement a defense in depth strategy using a combination of components and configurations on a computer in a protected zone on my home network in an effort to to reduce the attack surface while satisfying my need for remote access.

"Step One: Configure user accounts with obscure non-dictionary user names. For your user account, I would recommend using letters and numbers but not symbols as certain symbols are reserved for the system. Choose something that you can remember but wouldn't exist in a dictionary. I also recommend using a phrase rather than a password of no less than 16 characters in a combination of mixed case letters, numbers, and symbols. Not only is a phrase easier to remember than a password, it is an order of magnitude more difficult to crack."

Complete Story

Related Stories:

• How To: Get Linux Power on Your Windows PC with Cygwin(Sep 03, 2010)
• Six things I wish Mom told me (about ssh)(Aug 28, 2010)
• Remote Administration with Linux(Aug 25, 2010)
• SSH: Tips And Tricks You Need(Aug 23, 2010)
• SSH Tunneling On Android(Aug 05, 2010)
• Use ssh_config To Simplify Your Life(Mar 25, 2010)
• OpenSSH 5.3 is now available(Oct 04, 2009)
• XDMCP over SSH for Linux and Windows(Sep 01, 2009)