ssh server security warning

December 12th, 2006 mysurface Posted in Admin, Misc, ssh, sudo | Hits: 35156 | 4 Comments »

If you are hosting your ssh server to public, please remember to disable the root access. This is important! A lots of “hacker”s are running brute force tools trying to scan the open ssh port and brute force to get root access. If your root password somehow easy to guess, or you are not lucky enough, your server will be “hack” and become a phishes machine.

How to disable the root access?
Edit /etc/ssh/sshd_config, search for PermitRootLogin and change the yes to no. Then restart ssh server

sudo /etc/init.d/ssh restart

Don’t take the risk to enable root access, unless you are sure what are you doing. If you need root access, consider to use sudo.

4 Responses to “ssh server security warning”

  1. That is not clear for me completely.Anyway thanks for your thoughts.
    Regards.

  2. [...] I used to access remote machines within internal networks through ssh, therefore security is not my concern, with GSI-disable, it removes few seconds delays from ssh login. I consider that solved my problem. Related Posts ssh server security warning If you are hosting your ssh server to public, please remember to disable the root access. This is important! A lots of “… [...]

  3. [...] ssh server security warning If you are hosting your ssh server to public, please remember to disable the root access. This is important! A lots of “… [...]

  4. max factor is greater in my point of view x

Leave a Reply