![]() I created a key pair on PuTTYgen, saved my public key to my existing server/droplet of the SFTP-only user account, then tried to SFTP into my droplet using the private key via FileZilla. Will I be able to SFTP in with a public/private key access? So I tested. ![]() This was possibly a misstep, I think, because SSH key authentication relies on SSH. Then I went right into reading and setting up an SFTP-only user account access and disabling its shell access. Its documentation? Fantastic.Īs soon as I created my first droplet, I dived straight to the initial steps to set up CentOS. Setting up a virtual server (or “droplet”) in DigitalOcean is a blast and easy peasy. (Okay so I actually liked that CentOS is short for Community Enterprise Operating System “community” and “enterprise” in the same sentence is sexy.) Briefly reading on how solid CentOS stability is, I opted for version 7. What I was sure of is that a Ubuntu / Debian setup (which I’m more familiar with) is definitely not going to work for me. Besides, I wouldn’t need anything else set up on the machine beyond shell and FTP access. I have no clear idea why I chose CentOS as the setup. I have to admit, I pretty much followed my gut even though I have zero experience whatsoever with CentOS. And of course, the easiest way to owning a whole server itself is to set up a VPS (virtual private server).Īnd this is where DigitalOcean and CentOS come to the rescue, with its minimum USD5 a month subscription (equals to USD60 a year). And naturally, the only answer to total control of a server is owning the whole server itself. But, being the control freak that I am, at the end SmartFile didn’t really fit with what I was looking for. I went to try SmartFile, which was cool with its custom branding features and easy setup. As the title of this blog post suggests, I spent some time looking into SFTP key authentication solutions that are not just more affordable than the RM1,500.00 (around USD400) a year subscription (edit: I just found it it’s actually per quarter!), but also allows for root shell access on the server itself, something that the client’s previous vendor did not give. ![]() I’m not overly crazy about server environment setups, but I’m always up for an adventure when it comes to tinkering open source systems. I had the opportunity to help a client transition themselves from outsourcing their ICT services to taking control of these services internally. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |