User Tools

Site Tools


ubuntu:ssh

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
ubuntu:ssh [2019/12/04 21:19] peterubuntu:ssh [2023/06/09 16:04] (current) peter
Line 1: Line 1:
 ====== SSH ====== ====== SSH ======
  
-[[SSH:Blacklist a public key|Blacklist a public key]]+===== OpenSSH =====
  
-[[SSH:Check the Current SSH Ports|Check the Current SSH Ports]]+OpenSSH is the implementation of the SSH protocol on Ubuntu.
  
-[[SSH:Configure sshd|Configure sshd]]+  * OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. 
 +  * SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems.
  
-[[SSH:Configure sshd with multiple authentication factors|Configure sshd with multiple authentication factors]]+However, the main advantage is server authentication, through the use of public key cryptography.
  
-[[SSH:Configuring sshd|Configuring sshd]]+Here are a few things you need to tweak in order to improve OpenSSH server security.
  
-[[SSH:Disabling sshd|Disabling sshd]]+<WRAP important> 
 +**IMPORTANT:**  Before making any modifications to the **/etc/sshd_config** file, make a backup by:
  
-[[SSH:Distribute public keys|Distribute public keys]]+<code bash> 
 +sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults 
 +</code>
  
-[[SSH:Get the host's fingerprint|Get the host's fingerprint]]+...and
  
-[[SSH:Install SSH|Install SSH]] +<code bash> 
- +sudo chmod a-w /etc/ssh/sshd_config.factory-defaults 
-[[SSH:Limit user logins|Limit user logins]] +</code> 
- +</WRAP>
-[[SSH:Manage SSH Key File With Passphrase|Manage SSH Key File With Passphrase]] +
- +
-[[SSH:Override socket-activated SSH|Override socket-activated SSH]] +
- +
-[[SSH:Restart SSH|Restart SSH]] +
- +
-[[SSH:Setup SSH Keys|Setup SSH Keys]] +
- +
-[[SSH:Test mode|Test mode]]+
  
-[[SSH:Troubleshooting SSH|Troubleshooting SSH]]+<WRAP info> 
 +**NOTE**Not all of the possible changes mentioned below have to be made.
  
 +Some changes are not recommended to be made but may offer tighter security depending on your requirements. 
 +</WRAP>
  
 ---- ----
  
 [[Ubuntu:SSH:Blacklist a public key|Blacklist a public key]] [[Ubuntu:SSH:Blacklist a public key|Blacklist a public key]]
 +
 +[[Ubuntu:SSH:Change the Port|Change the Port]]
  
 [[Ubuntu:SSH:Check the Current SSH Ports|Check the Current SSH Ports]] [[Ubuntu:SSH:Check the Current SSH Ports|Check the Current SSH Ports]]
Line 45: Line 45:
  
 [[Ubuntu:SSH:Configuring sshd|Configuring sshd]] [[Ubuntu:SSH:Configuring sshd|Configuring sshd]]
 +
 +[[Ubuntu:SSH:Creating public/private key authentication for SSH|Creating public/private key authentication for SSH]]
  
 [[Ubuntu:SSH:Disabling sshd|Disabling sshd]] [[Ubuntu:SSH:Disabling sshd|Disabling sshd]]
  
 [[Ubuntu:SSH:Distribute public keys|Distribute public keys]] [[Ubuntu:SSH:Distribute public keys|Distribute public keys]]
 +
 +[[Ubuntu:SSH:ERROR - SSH Connection Refused|ERROR - SSH Connection Refused]]
  
 [[Ubuntu:SSH:Get the host's fingerprint|Get the host's fingerprint]] [[Ubuntu:SSH:Get the host's fingerprint|Get the host's fingerprint]]
Line 59: Line 63:
  
 [[Ubuntu:SSH:Override socket-activated SSH|Override socket-activated SSH]] [[Ubuntu:SSH:Override socket-activated SSH|Override socket-activated SSH]]
 +
 +[[Ubuntu:SSH:Port Forwarding|Port Forwarding]]
  
 [[Ubuntu:SSH:Restart SSH|Restart SSH]] [[Ubuntu:SSH:Restart SSH|Restart SSH]]
  
 [[Ubuntu:SSH:Setup SSH Keys|Setup SSH Keys]] [[Ubuntu:SSH:Setup SSH Keys|Setup SSH Keys]]
 +
 +[[Ubuntu:SSH:SSH Login Message|SSH Login Message]]
  
 [[Ubuntu:SSH:Test mode|Test mode]] [[Ubuntu:SSH:Test mode|Test mode]]
Line 68: Line 76:
 [[Ubuntu:SSH:Troubleshooting SSH|Troubleshooting SSH]] [[Ubuntu:SSH:Troubleshooting SSH|Troubleshooting SSH]]
  
- +[[Ubuntu:SSH:Two-Factor Authentication (using Google Authenticator)|Two-Factor Authentication (using Google Authenticator)]]
----- +
- +
-===== OpenSSH ===== +
- +
-OpenSSH is the implementation of the SSH protocol on Ubuntu+
- +
-OpenSSH is recommended for remote login, making backups, remote file transfer via scp or sftp, and much more. SSH is perfect to keep confidentiality and integrity for data exchanged between two networks and systems. +
- +
-However, the main advantage is server authentication, through the use of public key cryptography. +
- +
-Here are a few things you need to tweak in order to improve OpenSSH server security: +
- +
-Before making any modifications to the **/etc/sshd_config** file, make a backup by: +
- +
-<code bash> +
-sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults +
-</code> +
- +
-...and +
- +
-<code bash> +
-sudo chmod a-w /etc/ssh/sshd_config.factory-defaults +
-</code> +
- +
-**NOTE**: Not all of the possible changes mentioned below have to be made. Some changes are not recommended to be made but may offer tighter security depending on your requirements. +
  
ubuntu/ssh.1575494341.txt.gz · Last modified: 2020/07/15 09:30 (external edit)

Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki