There are many ways to remote in to a machine–some of them are secure, some of them are not. For the old school administrators, you can’t beat secure shell for security. Unfortunately, the Windows platform doesn’t include either a secure shell client or server. In order to connect to a machine via SSH (default port 22), the secure shell daemon must be present on the machine in question.
Thanks to the freeSSHd application, it is possible to set up a secure shell and secure ftp server on a Windows XP/Vista/7/Server machine and even have a handy GUI tool for the configuration of both services. Let’s walk through the steps of getting an SSH server up and running on your Windows 7 machine.
What you’ll need
- Windows-based desktop (or server)
- freeSSHd installation file
- Admin access to open port 22 on either server or network
I included the admin access requirement in case there is an issue with your network passing port 22 through. If this happens, you will need to set up a rule to allow (or pass) the default SSH port into the target machine. If you cannot, you can always change to a non-standard port that you know is open.
Download and double-click the installation file. The installation is fairly straightforward except for these points:
- Private keys should be generated (you will be prompted during the installation), and
- Do not start freeSSHd as a system service (this will cause problems with the configuration and can cause security issues).
Once you follow all the steps in the wizard, freeSSHd will be installed.
Since we’re not running this as a system service, we have to start it manually by double-clicking the freeSSHd desktop icon. It will seem like nothing happened, but you should see a new icon in the system tray (Figure A).
The freeSSHd is in the bottom right corner.
Right click the system tray icon and select Settings. You should see a green check next to the SSH server and a red X next to the Telnet server (Figure B). That is exactly how it should look.
If you see a red X next to the SSH server, click the link labeled Click Here To Start It. (Click the image to enlarge.)
Your SSH server should be running now, but you have no means of authenticating a user. freeSSHd doesn’t need (nor should have) access to your Active Directory information, so you’ll want to set up a user who can access the machine. To do this, follow these steps:
- Open the freeSSHd settings window.
- Click the Users tab.
- Click the Add button.
- Fill out the necessary information in the User Properties dialog (Figure C) and click OK. You should be able to connect to your Windows machine using secure shell now.
Be sure to enable the features to be allowed by the user. (Click the image to enlarge.)
So what can you do with this application? One nice feature of freeSSHd is the ability to use the scp command (secure copy); this allows you to securely move files to and from a machine. The scp command structure looks like this: scp filename:username@ADDRESS_TO_DESTINATION:filename (username is the username on the machine the file is to be copied to, ADDRESS_TO_DESTINATION is the IP address of the machine the file is to be copied to, and the filename is the name of the file to be copied).
Let’s say you want to copy test.odt to jlwallen on a machine with an address of 192.168.100.74 (that machine will need to have a form of the secure shell daemon running as well). Here’s how to execute this successfully:
- Log in to your Windows machine via secure shell.
- Issue the command scp test.odt firstname.lastname@example.org:test.odt.
- Enter the remote user’s password and let the file copy. If you go to the remote machine, you should see that file is in the user’s home directory.
The ability to run a secure shell server on a Windows machine makes remote administration or use even easier than just adding a third-party solution such as LogMeIn or TeamViewer. When you don’t need a full-blown GUI for remotes, you want to know you’re getting in to your machine with at least a modicum of security–freeSSHd offers that in the true UNIX/Linux fashion. Slap this little beauty on one of your Windows machines, and see if it makes your life easier.