Disable ssh root access

Published by Tito on

The first thing to do, when you setup a new server is to disable root access via ssh

First you need to login with root privileges and create a new user and assign to it a new password

adduser pippo
passwrd pippo

then locate and edit you sshd_config file (usually under/etc/ssh/sshd_config)

vi /etc/ssh/sshd_config
# Change the default port
# Locate the line Port and change it to a custom one (ex. 22222)
Port 22222
# Locate the line PermitRootLogin and change it to
PermitRootLogin no

After that restart the sshd service (in case of centos this is the command)

service sshd restart

Then try a login with a new shell (in case of problem you can fix it 🙂 )

[user@localhost] ssh -p 22222 pippo@remotehost
insert password
[pippo@remotehost] exit
# then try with root
[user@localhost] ssh -p 22222 <rootuser>@remotehost
insert password
# an error is expected
# then try default port
[user@localhost] ssh pippo@remotehost
# an error is expected

More info on https://mediatemple.net/community/products/dv/204643810/how-do-i-disable-ssh-login-for-the-root-user

Categories: Server

0 Comments

Leave a Reply

Avatar placeholder

Your email address will not be published.

Related Posts

Js,Ts,Css

Node multithread

Intro Node.js is primarily single-threaded due to its event-driven, non-blocking I/O architecture, which means it handles tasks asynchronously on a single thread, particularly for I/O operations. However, for CPU-intensive tasks or tasks that benefit from Read more…

Server

Kong timeout management

Kong has 3 different timeout connect_timeout: from kong to the micro. Once is connected then the connection is managed by keep-alive HTTP 1/1 open HTTP/2 can be used any reasonable value under 30000 ms read_timeout: end to Read more…

Bash

Setup OpenVPN in 10 minutes

Few steps to setup in 10 minutes a OpenVPN server inside a Docker in your VPS. Requirements Docker Docker compose Docker compose setup note: static-network is optional, just in case you would like to access Read more…