ARTICLE
Close Port 22 Forever and Secure Remote Devices With SSH No Ports
SSH No Ports For The Win
SSH No Ports is a new product we recently launched that makes managing remote devices a snap. With this new tool you can access your devices regardless of where they are—behind routers, NAT, firewalls, VPNs, private/1918 addresses, or even on the move. And you can reach them without reconfiguring your gateways, setting up port forwarding on your router, or using a VPN. And the part we love most? You don’t need to know the device’s IP address in order to find it. You can also SSH into your device without any open listening ports, which makes it possible to close port 22 forever and remove the network attack surface.
SSH No Ports has found a special place in the hearts of Sysadmins, DevOps folks, Home Lab enthusiasts, Raspberry Pi tinkerers, and security-minded developers. Here are a couple of recent use cases we think are super cool:
- Pen testers used it to gain secure remote access to devices they needed to evaluate. Before SSH No Ports, this would have meant an in-person visit to their client’s facility. Instead, this work was done remotely, saving time and cost.
- Our CTO and Co-founder, Colin, used it with his LoRaWAN gateway that only uses a cellular connection to reach the Internet. He was able to quickly and easily give remote access to the gateway to a colleague living and working halfway around the world.
- People with their own home labs who want access from outside their house, but are extremely reluctant to leave port 22 open can use SSH No Ports. With SSH No Ports they can access their lab through RDP, VNC, and even the web with absolutely no listening ports open.
A use case on the horizon that we’re excited about is from a device manufacturer we’re working with. Their plan is to install SSH No Ports in their consumer electronics, so they can provide remote support once the devices are in their customers’ homes.
See below for a quick demo of how SSH No Ports works, and then put it to the real test by trying it out yourself! Right now, the price is $40 for one year of access, and you can use one account to manage up to 25 devices.
How It Works
Atsign’s technology–the atProtocol and the client SDKs, as well as the socket rendezvous–forms the backbone of SSH No Ports. Atsign technology allows two devices to communicate securely, peer-to-peer, behind any firewall by communicating purely outbound. The socket rendezvous is just a socket connector that connects two of its ports together–and nothing more! The client cuts a new SSH keypair for each session, and securely shares the private key to the device via the atProtocol. The device makes an SSH connection to the socket rendezvous, and at no point are any listening ports open on either end during this process, not even port 22.
For more information, visit noports.com
New Legislation Poised to Give People More Control Over Their Data
Utah has passed the Digital Choice Act, landmark legislation that could reshape how social media applications handle people’s data.
Shifting the Paradigm: Atsign’s Organic Security Approach
Atsign’s built-in security—encryption, zero trust architecture, and a least privilege approach—performs better than firewalls and authentication systems.
The One Question Boards Should Be Asking Their Companies: “How Are You Securing Your AI?”
Boards must prioritize AI security. Learn what questions to ask companies about AI security strategy, including data protection, access control, and vulnerability management.
Mitigating Man-in-the-Middle Risks and Ensuring Data Integrity
Prevent Man-in-the-Middle risks, protect your data, and maintain privacy while implementing corporate policies.
Why Are There Constantly Escalating Data Breaches and Security Violations?
Data breaches are on the rise. Traditional security measures like firewalls and VPNs have limitations. Atsign offers a new solution with atSigns, a secure digital address that eliminates the need for open ports and complex authentication, simplifying data security.