User Tools

Site Tools


ubuntu:ssh

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision
Previous revision
ubuntu:ssh [2019/11/24 14:18] – created peterubuntu:ssh [2023/06/09 16:04] (current) peter
Line 1: Line 1:
 ====== SSH ====== ====== SSH ======
  
-[[SSH:Blacklist a public key|Blacklist a public key]]+===== OpenSSH =====
  
-[[SSH:Check the Current SSH Ports|Check the Current SSH Ports]]+OpenSSH is the implementation of the SSH protocol on Ubuntu.
  
-[[SSH:Configure sshd|Configure sshd]]+  * OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. 
 +  * SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems.
  
-[[SSH:Configure sshd with multiple authentication factors|Configure sshd with multiple authentication factors]]+However, the main advantage is server authentication, through the use of public key cryptography.
  
-[[SSH:Configuring sshd|Configuring sshd]]+Here are a few things you need to tweak in order to improve OpenSSH server security.
  
-[[SSH:Disabling sshd|Disabling sshd]]+<WRAP important> 
 +**IMPORTANT:**  Before making any modifications to the **/etc/sshd_config** file, make a backup by:
  
-[[SSH:Distribute public keys|Distribute public keys]]+<code bash> 
 +sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults 
 +</code>
  
-[[SSH:Get the host's fingerprint|Get the host's fingerprint]]+...and
  
-[[SSH:Install SSH|Install SSH]]+<code bash> 
 +sudo chmod a-w /etc/ssh/sshd_config.factory-defaults 
 +</code> 
 +</WRAP>
  
-[[SSH:Limit user logins|Limit user logins]]+<WRAP info> 
 +**NOTE**Not all of the possible changes mentioned below have to be made.
  
-[[SSH:Manage SSH Key File With Passphrase|Manage SSH Key File With Passphrase]]+Some changes are not recommended to be made but may offer tighter security depending on your requirements.  
 +</WRAP>
  
-[[SSH:Override socket-activated SSH|Override socket-activated SSH]]+----
  
-[[SSH:Restart SSH|Restart SSH]]+[[Ubuntu:SSH:Blacklist a public key|Blacklist a public key]]
  
-[[SSH:Setup SSH Keys|Setup SSH Keys]]+[[Ubuntu:SSH:Change the Port|Change the Port]]
  
-[[SSH:Test mode|Test mode]]+[[Ubuntu:SSH:Check the Current SSH Ports|Check the Current SSH Ports]]
  
-[[SSH:Troubleshooting SSH|Troubleshooting SSH]]+[[Ubuntu:SSH:Configure sshd|Configure sshd]]
  
 +[[Ubuntu:SSH:Configure sshd with multiple authentication factors|Configure sshd with multiple authentication factors]]
  
-===== OpenSSH =====+[[Ubuntu:SSH:Configuring sshd|Configuring sshd]]
  
-OpenSSH is the implementation of the SSH protocol on Ubuntu. OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems. However, the main advantage is server authentication, through the use of public key cryptography.+[[Ubuntu:SSH:Creating public/private key authentication for SSH|Creating public/private key authentication for SSH]]
  
-Here are a few things you need to tweak in order to improve OpenSSH server security:+[[Ubuntu:SSH:Disabling sshd|Disabling sshd]]
  
-Before making any modifications to the **/etc/sshd_config** file, make a backup by:+[[Ubuntu:SSH:Distribute public keys|Distribute public keys]]
  
-<code bash> +[[Ubuntu:SSH:ERROR SSH Connection Refused|ERROR - SSH Connection Refused]]
-sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults +
-</code>+
  
-...and+[[Ubuntu:SSH:Get the host's fingerprint|Get the host's fingerprint]]
  
-<code bash> +[[Ubuntu:SSH:Install SSH|Install SSH]] 
-sudo chmod a-w /etc/ssh/sshd_config.factory-defaults + 
-</code>+[[Ubuntu:SSH:Limit user logins|Limit user logins]] 
 + 
 +[[Ubuntu:SSH:Manage SSH Key File With Passphrase|Manage SSH Key File With Passphrase]] 
 + 
 +[[Ubuntu:SSH:Override socket-activated SSH|Override socket-activated SSH]] 
 + 
 +[[Ubuntu:SSH:Port Forwarding|Port Forwarding]] 
 + 
 +[[Ubuntu:SSH:Restart SSH|Restart SSH]] 
 + 
 +[[Ubuntu:SSH:Setup SSH Keys|Setup SSH Keys]] 
 + 
 +[[Ubuntu:SSH:SSH Login Message|SSH Login Message]] 
 + 
 +[[Ubuntu:SSH:Test mode|Test mode]] 
 + 
 +[[Ubuntu:SSH:Troubleshooting SSH|Troubleshooting SSH]]
  
-**NOTE**Not all of the possible changes mentioned below have to be made. Some changes are not recommended to be made but may offer tighter security depending on your requirements. +[[Ubuntu:SSH:Two-Factor Authentication (using Google Authenticator)|Two-Factor Authentication (using Google Authenticator)]]
  
ubuntu/ssh.1574605112.txt.gz · Last modified: 2020/07/15 09:30 (external edit)

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki