Tag: ssh

Security, Sysadmin, Tutorials

SSH ProxyJump: reach private servers through a bastion without copying keys to it

| by admin | Leave a Comment on SSH ProxyJump: reach private servers through a bastion without copying keys to it
Close-up of fiber optic patch panel with yellow and white connectors plugging into blue ports — visual metaphor for ProxyJump tunneling traffic through one server to reach another (photo: Brett Sayles / Pexels)

You have a private server in a VPC that’s only reachable through a bastion host. The “obvious” way to SSH there is the wrong way: copy your private key onto the bastion, then SSH from bastion to the private box. …

Continue reading "SSH ProxyJump: reach private servers through a bastion without copying keys to it"
Sysadmin, Tutorials

~/.ssh/config power user features: ProxyJump, ControlMaster, IdentitiesOnly, and a starter file

| by admin | Leave a Comment on ~/.ssh/config power user features: ProxyJump, ControlMaster, IdentitiesOnly, and a starter file
Close-up of a code editor displaying syntax-highlighted Python — visual stand-in for editing a config file (photo: Godiatima / Pexels)

Most people use ~/.ssh/config as a glorified shortcut file: Host server with a HostName and a User, save five seconds of typing. That’s the entry point, and it’s fine. But the file is a much more powerful configuration system …

Continue reading "~/.ssh/config power user features: ProxyJump, ControlMaster, IdentitiesOnly, and a starter file"
Security, Sysadmin, Tutorials

Hide the OpenLiteSpeed admin panel: bind 7080 to 127.0.0.1 + reach it via SSH tunnel

| by admin | Leave a Comment on Hide the OpenLiteSpeed admin panel: bind 7080 to 127.0.0.1 + reach it via SSH tunnel
Linux ls -la output showing /bin, /boot, /etc, /home, /lib, /sbin and other root directories — typical first view after SSHing into a server (photo: Pixabay / Pexels)

OpenLiteSpeed’s admin panel runs on port 7080 by default and binds to *. That means anyone with your server’s IP can hit https://your-ip:7080/ and reach the admin login form. The form has authentication, sure — but having a login …

Continue reading "Hide the OpenLiteSpeed admin panel: bind 7080 to 127.0.0.1 + reach it via SSH tunnel"
macOS, Sysadmin, Tutorials

Keep tmux sessions alive across Mac sleep + Wi-Fi changes: ServerAliveInterval vs autossh vs mosh

| by admin | Leave a Comment on Keep tmux sessions alive across Mac sleep + Wi-Fi changes: ServerAliveInterval vs autossh vs mosh
A hand resting on a laptop keyboard outdoors at a wooden table with trees in the background — visual for the 'close lid, move, reopen, reconnect' workflow that mosh and autossh are designed to make seamless (photo: Jose Hermes Furtunato / Pexels)

You SSH into a server, start a long-running build inside tmux, close the laptop lid to walk to lunch, come back fifteen minutes later — and your terminal greets you with Connection to server.example.com closed by remote host. The …

Continue reading "Keep tmux sessions alive across Mac sleep + Wi-Fi changes: ServerAliveInterval vs autossh vs mosh"