[AirRon]

I am a networking newbie. I need to access my files on my home mac from work and have remote login turned on and I use WinSCP to access files from work over SSH. It have my airport base station shuttling the port to the correct mac. It is working but . . .

Questions
1. Is there is a log of attempts to login remotely, so I can detect someone trying to hack his way in?
2. Is SMB networking secure? It would be nice to mount a drive from home on my work PC. I don't trust samba for no clear reason.
3. Is this is a secure set-up? Better ideas, anyone?

Thanks
ronald

[kampl]

SCP would be my first choice in that the authentication and data transfer will be ciphered. I've done some pen testing against sshd on 10.2.6 and have not found any known holes in the version that is used (I forget what version). I suppose you could use WebDAV over SSL with the built in Apache daemon for easy access from a browser, but I have not set this up before.

Do NOT use SMB.

[kampl]

Access attempts, both failed and successful, can be found in /var/log/system.log. Forgot about that part of the question.

Open up a terminal and type grep sshd /var/log/system.log

That will give you time/date of attempt, what source address and what protocol version.

[AirRon]

Thanks!

[Arkham_c]

If you want to use SMB, you can do so. Just do it through an ssh tunnel. Firewall off port 139 and then forward it through ssh, easy as pie.

[kampl]

"Personal Websharing" over SSL might work for your purposes as well. I've been tinkering with it from time to time but have not got it the way I want in so far as authentication (not a fan of .htaccess files).

There is a good SSL tutorial for OS X at Apple Developer Connection

I was thinking using this and modifying /etc/httpd/users/username would work well and provide ciphered and authenticated access to a home directory through a web browser without having to mess around with the client device.

Anyone given this a shot and have it working well?