Linux

58611 readers

1037 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 6 years ago

MODERATORS

AgreeableLandscape@lemmy.ml

nooter692@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz

Some questions about ssh and Overthewire:wargames (lemmy.ml)

submitted 4 days ago by SusanoStyle@lemmy.ml to c/linux@lemmy.ml

10 comments fedilink hide all child comments

Hi there, In my search to learn a bit more about Linux, i came across this website called "OverTheWire", which teaches basic and some advanced concepts over SSH. It seems like a fun and engaging way to learn.

However, as a bit of a paranoid beginner when it comes to Linux and networking, i find myself worrying about the potential dangers of connecting to an untrusted network.

So, my questions are:

Does anyone have any experience with the website?
In the hypothetical case that I open an SSH connection to a compromised network, could that expose me to attacks? (Aside from obvious risks like downloading malicious files myself.)
Should I use a virtual machine (VM) for this?

I sincerely appreciate any responses. Thank you!

top 10 comments

sorted by: hot top controversial new old

[–] deadcade@lemmy.deadca.de 8 points 4 days ago (1 children)

I do not personally have experience with this website
Connecting to an SSH server with an SSH client is much like connecting to a webserver with a webbrowser. It is theoretically possible for bad things to happen, but automatic ("zero click") attacks of any kind are difficult to pull off when the software is up to date. Most bad things that happen come from the user doing it themselves, like downloading and running untrusted programs, entering your password on a phishing site, etc.
This is not necessary, given your host system is up to date.

Note that my answer to 2 is heavily oversimplified, but applies in this scenario of SSH to "OverTheWire".

[–] SusanoStyle@lemmy.ml 3 points 4 days ago* (last edited 4 days ago) (1 children)

Thank you, even if its simplified, the browser example was really helpful. So in summary, having software up to date and being aware of what you do, should in most cases be safe. I was asking just in case there was some configuration i should do before connecting. With browsing i know that if i use something like firefox and ublock, i should be safe from most malware unless i screw up pretty bad. I will probably research ssh a bit more, as how it works, but you put some fears away. Thank you again.

[–] deadcade@lemmy.deadca.de 2 points 4 days ago (1 children)

The main oversimplification is where browsers "just visit websites", SSH can be really powerful. You can send/receive files with scp, or even port forward with the right flags on ssh. If you stick to ssh user@host without extra flags, the only thing you're telling SSH to do is set up a text connection where your keyboard input gets sent, and some text is received (usually command output, like from a shell).

As long as you understand what you're asking SSH to do, there's little risk in connecting to a random server. If you scp a private document from your computer to another server, you've willingly sent it. If you ssh -R to port forward, you've initiated that. The server cannot simply tell your client to do anything it wants, you have to do this yourself.

[–] SusanoStyle@lemmy.ml 2 points 4 days ago

I will keep it in mind, i will be mindful of commands and flags. No typing without being certain of what each command does.

[–] Marafon@sh.itjust.works 6 points 4 days ago (1 children)

OverTheWire is fun! If you decide to play and get stuck make sure to check out the discord for help.

[–] SusanoStyle@lemmy.ml 2 points 4 days ago

Thanks for the tip!

[–] dipdowel@feddit.nl 2 points 4 days ago* (last edited 4 days ago) (1 children)

Hi. You could run your ssh-client on a virtual machine or find another solution to sandbox your client (e.g. firejail if you are on linux). Just for ssh, a very lightweight vm would cut it.

[–] SusanoStyle@lemmy.ml 2 points 3 days ago

Nice suggestion i will look it up, thank you!

[–] frongt@lemmy.zip 2 points 4 days ago (1 children)

Yes, it could expose you, if the remote side exploits your client. But that isn't really any different from connecting to their website with your browser client.

[–] SusanoStyle@lemmy.ml 1 points 4 days ago

Thanks for the reply, i will keep it mind.