Hello Loyal readers,
Today I would like to give you a good tip for linux security. A lot of servers are compromised due to brute force attacks on users credentials, using default services, like ssh - which if you didn’t know is the remote management console. There is no one specific way to change a banner on this program, however there is a few tips that could get you started in the right direction.
We can make changes to the config file by opening /etc/ssh/sshd_config in your favorite text editor, mine is VIM!
Change the default login port.
Port 22 change to a higher port, say 5678
Change Authentification
PermitRootLogin no
Make sure there is NO clear text password being accepted or sent.
PasswordAuthentication yes
Use PAM authentification:
UsePAM yes
Also set this:
ChallengeResponseAuthentication no
AS for basic security of ssh, you should be ok now. You now need to restart your sshd /etc/init.d/./ssh restart
Best Regards,
TheITAdvisory
