To try everything Brilliant has to offer—free—for a full 30 days, visit https://brilliant.org/DreamsofCode . You’ll also get 20% off an annual premium subscr...
Stop it right now.
It does not help your threat environment. It just makes things worse.
Honestly, one isn’t better than the other. It’s more of a “what can they do” if they gain access. With SSH you likely have terminal access wherever. VPN means you need to be able to talk to the service and even then it’s usually just network access. Attackers have to break in further once there.
I would rather neither, but of the two I have good firewall rules internally. And failed ssh access internally is reported immediately.
Honestly, one isn’t better than the other. It’s more of a “what can they do” if they gain access. With SSH you likely have terminal access wherever. VPN means you need to be able to talk to the service and even then it’s usually just network access. Attackers have to break in further once there.
I would rather neither, but of the two I have good firewall rules internally. And failed ssh access internally is reported immediately.