Results 1 to 1 of 1
-
28th Dec 2011, 02:10 PM#1
OPRespected Member
Website's:
ShineServers.Com Pickadedi.com
How to Secure SSH in WHM
Best Security Practice
The ideal ssh daemon would only allow login via SSH keys. This setup can easily be configured within WHM >> Manage SSH Keys, where you?ll create a SSH key for you to login with. Once you?ve created your key, and verified that you can login with it, you?ll want to go to WHM >> SSH Password Authorization Tweak, which will disable PasswordAuthentication in /etc/ssh/sshd_config.
Medium-security Configuration
If you have clients on your server that require PasswordAuthentication, you can still lock down SSH pretty well.
Open /etc/ssh/sshd_config in your favorite editor
Code:# vi /etc/ssh/sshd_config
Disable direct root login
First, be sure that you have an alternate user configured in your environment that you can use to login via SSH. This user must also have privileges to ?su? to root.
Then, set the ?PermitRootLogin? directive to ?no?.
Code:PermitRootLogin no
Change the port that sshd listens on
Code:Port 221
Be sure to use a port equal to or less than 1024, as these are privileged ports that only root or a super-user can set daemons to listen on. If you were to configure sshd to listen on port 11223, and a user was able to take down sshd, they could then start their own sshd daemon in place of yours.
State which users may login via SSH
If you want to only allow certain users to login via SSH, implement the ?AllowUsers? directive:
Code:AllowUsers bharat sandvik
This will only allow ?bharat? and ?sandvik? to login via SSH.
Save and Restart SSH
Now save the file and restart the sshd service:
Code:service sshd restartBharat Reviewed by Bharat on . How to Secure SSH in WHM Best Security Practice The ideal ssh daemon would only allow login via SSH keys. This setup can easily be configured within WHM >> Manage SSH Keys, where you?ll create a SSH key for you to login with. Once you?ve created your key, and verified that you can login with it, you?ll want to go to WHM >> SSH Password Authorization Tweak, which will disable PasswordAuthentication in /etc/ssh/sshd_config. Medium-security Configuration If you have clients on your server that require Rating: 5
Register To ReplySponsored Links
Thread Information
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)
Similar Threads
-
How to secure RDP??
By Jiung in forum Technical Help Desk SupportReplies: 6Last Post: 9th Aug 2012, 09:55 PM -
how to secure WP themes?
By devilsgal in forum Technical Help Desk SupportReplies: 1Last Post: 9th Dec 2011, 07:59 PM -
How secure is your password?
By alex17 in forum General DiscussionReplies: 0Last Post: 24th May 2011, 06:58 PM -
[PHP] Session's secure
By Nedim! in forum Web Development AreaReplies: 2Last Post: 12th Oct 2010, 05:43 PM -
How We Can Secure
By WarezMania in forum Webmaster DiscussionReplies: 6Last Post: 17th May 2010, 04:27 PM
Staff Online
themaCreator - create posts from...
Version 3.24 released. Open older version (or...