a word on ssh security

April 14, 2017 by Ben

Since the prices for root/v-servers on the internet dropped, everybody is using one. But using ssh with the root user exposed and a not so long or worse generated root password from the Hoster, is maybe not the best idea if you don’t want to be hacked by some script kiddie.

such wow

so spin up your shell and fix this!

  • generate ssh-keys
  • upload them to your server
  • disable password authentication

watch the video to see the steps below in action: video link

ssh-keygen -b 4096 -t rsa

ssh-copy-id your-user@your-server-name

after this and make sure you try the passwordless login and make sure, a shell is open for backup (if you messed up something, you can still roll back)

vim /etc/ssh/sshd_config and uncomment the line and change the value from yes to no:

passwordless login

© 2017 diffus.org