Question about SSH and UFW





.everyoneloves__top-leaderboard:empty,.everyoneloves__mid-leaderboard:empty,.everyoneloves__bot-mid-leaderboard:empty{ margin-bottom:0;
}







0















I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated). 
Thanks for your time










share|improve this question





























    0















    I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated). 
    Thanks for your time










    share|improve this question

























      0












      0








      0








      I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated). 
      Thanks for your time










      share|improve this question














      I am sorry if this is a dumb question. Basically, I wanted to enable a ssh connection to github. I am not that much familiar with ssh(and UFW) so I was wondering if I need to activate UFW to secure my laptop now that I am going to be using ssh. Or is it unnecessary to activate UFW if I am going to be just connecting to GitHub? I have been using ubuntu for 3 months now but haven’t enabled UFW as someone said it’s unnecessary(and also it looks too complicated). 
      Thanks for your time







      ssh firewall ufw github






      share|improve this question













      share|improve this question











      share|improve this question




      share|improve this question










      asked Mar 25 at 14:46









      DarshanDarshan

      476




      476






















          1 Answer
          1






          active

          oldest

          votes


















          2














          UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).



          Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.



          Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.



          I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:



          sudo ufw enable
          sudo ufw default allow outgoing
          sudo ufw default deny incoming


          If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):



          sudo ufw allow in ssh
          sudo ufw allow in 22


          But again, you don't need that to connect to a remote server as a client.






          share|improve this answer
























          • Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

            – Darshan
            Mar 25 at 15:05











          • Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

            – Byte Commander
            Mar 25 at 15:13












          Your Answer








          StackExchange.ready(function() {
          var channelOptions = {
          tags: "".split(" "),
          id: "89"
          };
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function() {
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled) {
          StackExchange.using("snippets", function() {
          createEditor();
          });
          }
          else {
          createEditor();
          }
          });

          function createEditor() {
          StackExchange.prepareEditor({
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: true,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: 10,
          bindNavPrevention: true,
          postfix: "",
          imageUploader: {
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          },
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          });


          }
          });














          draft saved

          draft discarded


















          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1128556%2fquestion-about-ssh-and-ufw%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown

























          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          2














          UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).



          Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.



          Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.



          I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:



          sudo ufw enable
          sudo ufw default allow outgoing
          sudo ufw default deny incoming


          If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):



          sudo ufw allow in ssh
          sudo ufw allow in 22


          But again, you don't need that to connect to a remote server as a client.






          share|improve this answer
























          • Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

            – Darshan
            Mar 25 at 15:05











          • Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

            – Byte Commander
            Mar 25 at 15:13
















          2














          UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).



          Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.



          Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.



          I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:



          sudo ufw enable
          sudo ufw default allow outgoing
          sudo ufw default deny incoming


          If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):



          sudo ufw allow in ssh
          sudo ufw allow in 22


          But again, you don't need that to connect to a remote server as a client.






          share|improve this answer
























          • Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

            – Darshan
            Mar 25 at 15:05











          • Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

            – Byte Commander
            Mar 25 at 15:13














          2












          2








          2







          UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).



          Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.



          Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.



          I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:



          sudo ufw enable
          sudo ufw default allow outgoing
          sudo ufw default deny incoming


          If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):



          sudo ufw allow in ssh
          sudo ufw allow in 22


          But again, you don't need that to connect to a remote server as a client.






          share|improve this answer













          UFW is a firewall. It can e.g. deny incoming connections to prevent remote machines from accessing any services that might run on your local computer and listen on any network ports (or it can also do a lot more fine-grained filtering in both directions, if you set it up).



          Normally there's no reason why you should not have UFW running on your local machine with default settings (allow outgoing, deny incoming). As long as you are not running any server applications on your local machine that need to be accessible from outside, this is fine.



          Connecting from your local machine to a remote server (e.g. GitHub) via ssh also works with UFW running as long as outgoing traffic is allowed.



          I'd recommend to enable UFW and make sure it allows outgoing and denies incoming traffic on your local machine, to improve its security without interfering with your internet access:



          sudo ufw enable
          sudo ufw default allow outgoing
          sudo ufw default deny incoming


          If you ever need to specifically allow incoming traffic on a specific port (or for a specific known service) you can do that by running either of these (because e.g. ssh is known to use port 22):



          sudo ufw allow in ssh
          sudo ufw allow in 22


          But again, you don't need that to connect to a remote server as a client.







          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered Mar 25 at 14:54









          Byte CommanderByte Commander

          66.5k27181310




          66.5k27181310













          • Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

            – Darshan
            Mar 25 at 15:05











          • Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

            – Byte Commander
            Mar 25 at 15:13



















          • Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

            – Darshan
            Mar 25 at 15:05











          • Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

            – Byte Commander
            Mar 25 at 15:13

















          Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

          – Darshan
          Mar 25 at 15:05





          Thnaks a lot for taking time to answer. I just have a question. If I deny incoming via ufw, will that prevent me from doing pull requests/cloning repo?

          – Darshan
          Mar 25 at 15:05













          Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

          – Byte Commander
          Mar 25 at 15:13





          Nope. Denying incoming traffic will only deny requests originating from a remote source. It does not deny incoming responses to your own requests. When you do a git pull or visit a website, you send the request and the server responds.

          – Byte Commander
          Mar 25 at 15:13


















          draft saved

          draft discarded




















































          Thanks for contributing an answer to Ask Ubuntu!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid



          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.


          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function () {
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2faskubuntu.com%2fquestions%2f1128556%2fquestion-about-ssh-and-ufw%23new-answer', 'question_page');
          }
          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          Popular posts from this blog

          數位音樂下載

          格利澤436b

          When can things happen in Etherscan, such as the picture below?