fachinformatiker-wiki

it's easy when it's here

User Tools

Site Tools

Trace: Init Systems OpenSSH
linux:remote_access:openssh

This is an old revision of the document!

OpenSSH

Harden SSH Access

harden_ssh.sh
#!/bin/bash
cp /etc/ssh/sshd_config /etc/ssh/sshd_config.orig
grep "PasswordAuthentication yes" /etc/ssh/sshd_config
grep "PasswordAuthentication yes" /etc/ssh/sshd_config | sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/g' /etc/ss>
 
grep "PermitRootLogin prohibit-password" /etc/ssh/sshd_config
grep "PermitRootLogin prohibit-password" /etc/ssh/sshd_config | sed -i 's/PermitRootLogin prohibit-password/PermitRootLogin no/g' />
 
grep "PermitEmptyPasswords no" /etc/ssh/sshd_config
grep "PermitEmptyPasswords no" /etc/ssh/sshd_config | sed -i 's/#PermitEmptyPasswords no/PermitEmptyPasswords no/g' /etc/ssh/sshd_c>
 
grep "KerberosAuthentication no" /etc/ssh/sshd_config
grep "KerberosAuthentication no" /etc/ssh/sshd_config | sed -i 's/#KerberosAuthentication no/KerberosAuthentication no/g' /etc/ssh/>
 
grep "GSSAPIAuthentication no" /etc/ssh/sshd_config
grep "GSSAPIAuthentication no" /etc/ssh/sshd_config | sed -i 's/#GSSAPIAuthentication no/GSSAPIAuthentication no/g' /etc/ssh/sshd_c>
 
systemctl restart sshd.service
This website uses cookies. By using the website, you agree with storing cookies on your computer. Also you acknowledge that you have read and understand our Privacy Policy. If you do not agree leave the website.  More information about cookies 
linux/remote_access/openssh.1668267199.txt.gz · Last modified: (external edit)