Setup specifics for secure access (ssh tunneling) on hosted domain?
I currently have running web and ftp services (like phpBB forums, CMS portals, rev-control system (Subversion), Moodle learning-management-systems--all served via Apache). I want to restrict access to any of these web/ftp services such that only someone with an appropriate access level can see them.
I do not think SSL alone will meet my requirements for my business applications (or at least some of them). I think another level of "security" is what I'm shooting for, possibly an SSH tunnel or VPN or some other similar technology. (For what it's worth, since I'm on a Virtual Private Share, I do not think a software VPN like http://OpenVPN.sourceforge.net will be feasible because I can not do necessary kernel mods on my VPS.)
I think I can setup a ssh tunnel ok to do this (although I have yet to actually demonstrate a working system). What I'm struggling with in my head is how will I keep a running web server (and ftp server, for that matter) but restrict usage only to secure (probably via ssh tunneling?) paths/users via my hosted server/VPS (or dedicated server if I end up having to go this route)?
Does the ssh server/tunneling/something handle all of this? Will I need to make special Apache httpd.conf configurations? Something else?
Thanks for any help and/or pointers.
-Matt
