Question about SSH and UFW
.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}
I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated).
Thanks for your time
ssh firewall ufw github
add a comment |
I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated).
Thanks for your time
ssh firewall ufw github
add a comment |
I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated).
Thanks for your time
ssh firewall ufw github
I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated).
Thanks for your time
ssh firewall ufw github
ssh firewall ufw github
asked Mar 25 at 14:46
DarshanDarshan
476
476
add a comment |
add a comment |
1 Answer
1
active
oldest
votes
UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).
Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.
Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.
I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:
sudo ufw enable
sudo ufw default allow outgoing
sudo ufw default deny incoming
If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):
sudo ufw allow in ssh
sudo ufw allow in 22
But again, you don't need that to connect to a remote server as a client.
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "89"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1128556%2fquestion-about-ssh-and-ufw%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).
Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.
Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.
I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:
sudo ufw enable
sudo ufw default allow outgoing
sudo ufw default deny incoming
If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):
sudo ufw allow in ssh
sudo ufw allow in 22
But again, you don't need that to connect to a remote server as a client.
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
add a comment |
UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).
Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.
Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.
I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:
sudo ufw enable
sudo ufw default allow outgoing
sudo ufw default deny incoming
If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):
sudo ufw allow in ssh
sudo ufw allow in 22
But again, you don't need that to connect to a remote server as a client.
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
add a comment |
UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).
Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.
Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.
I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:
sudo ufw enable
sudo ufw default allow outgoing
sudo ufw default deny incoming
If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):
sudo ufw allow in ssh
sudo ufw allow in 22
But again, you don't need that to connect to a remote server as a client.
UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).
Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.
Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.
I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:
sudo ufw enable
sudo ufw default allow outgoing
sudo ufw default deny incoming
If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):
sudo ufw allow in ssh
sudo ufw allow in 22
But again, you don't need that to connect to a remote server as a client.
answered Mar 25 at 14:54
Byte CommanderByte Commander
66.5k27181310
66.5k27181310
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
add a comment |
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?
– Darshan
Mar 25 at 15:05
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.
– Byte Commander
Mar 25 at 15:13
add a comment |
Thanks for contributing an answer to Ask Ubuntu!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1128556%2fquestion-about-ssh-and-ufw%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown