Since the prices for root/v-servers on the internet dropped, everybody is using one.
But using ssh with the root user exposed and a not so long or worse generated root password from the Hoster,
is maybe not the best idea if you don’t want to be hacked by some script kiddie.
so spin up your shell and fix this!
- generate ssh-keys
- upload them to your server
- disable password authentication
watch the video to see the steps below in action:
ssh-keygen -b 4096 -t rsa
after this and make sure you try the passwordless login and make sure, a shell is open for backup (if you messed up something, you can still roll back)
and uncomment the line and change the value from yes to no: