Monday, 16 June 2014

SSH Server Hardening

To Harden the SSH Connections below are the steps, you need to follow :

# vim /etc/ssh/sshd_config
Port 2299    
(Change the standard port number of SSH to your required port number and make sure the firewall is permitted to allow 2299 port here in my example)

Protocol 2   
(Make sure that protocol 2 is only permitted because it is more secure than protocol 1)

ListenAddress 192.168.1.1   
(Here if you have multiple NIC's make sure that on which interface the server will listen to SSH requets)

PermitRootLogin   No      
(Use this setting to block root user to use SSH for logging onto server)

# service sshd restart

No comments:

Post a Comment