{"id":241,"date":"2017-08-09T12:33:04","date_gmt":"2017-08-09T10:33:04","guid":{"rendered":"https:\/\/www.caribou360.com\/blog\/?p=241"},"modified":"2017-08-10T02:21:10","modified_gmt":"2017-08-10T00:21:10","slug":"disable-root-access-ssh-server","status":"publish","type":"post","link":"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/","title":{"rendered":"Disable root access for your SSH Server"},"content":{"rendered":"<p>This is just a short tutorial about one of many possible ways to protect your server from external attacks. If you&#8217;re running a Server you&#8217;ll probably access it via SSH and as root user. This is a default setting, but easy to fix with almost no effort. Since you&#8217;re able to log in as root, others will be able to log in as root as well. Therefore, we&#8217;re adding an extra layer of security while we&#8217;re removing direct root access and only force one specific user to log in.<!--more--><\/p>\n<p>First of all make sure you have your new user already set up. You can easily add new users with either useradd or adduser.<\/p>\n<h2>Accessing SSH<\/h2>\n<p>We&#8217;re going to connect to our Server via SSH with Putty or my favorite mRemoteNG and open the configuration file<\/p>\n<div class=\"su-row terminal-box\">\n<div class=\"su-column su-column-size-3-4\"><div class=\"su-column-inner su-u-clearfix su-u-trim\">\n<div class=\"su-box su-box-style-default terminal\" id=\"\" style=\"border-color:#000000;border-radius:2px\"><div class=\"su-box-title\" style=\"background-color:#222;color:#FFFFFF;border-top-left-radius:0px;border-top-right-radius:0px\">Terminal<\/div><div class=\"su-box-content su-u-clearfix su-u-trim\" style=\"border-bottom-left-radius:0px;border-bottom-right-radius:0px\">\nlogin as: <span class=\"tblue\">root<\/span><br \/>\nroot@caribou&#8217;s password: <span class=\"tblue\">\u2022\u2022\u2022\u2022\u2022\u2022<\/span><br \/>\nWelcome to your Server<\/p>\n<p>root@caribou:~# <span class=\"tblue\">whoami<\/span><br \/>\nroot<br \/>\nroot@caribou:~# <span class=\"tblue\">nano \/etc\/ssh\/sshd_config<\/span><br \/>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n<h3>Editing the configuration file<\/h3>\n<p>Before we scroll down you&#8217;ll see the Port, usually set to 22. It is possible to change that, but it is very rare that attackers are just scanning one specific port. If they do, however, they would end up receiving an error that there is no services running on that port.<\/p>\n<div class=\"su-row terminal-box\">\n<div class=\"su-column su-column-size-3-4\"><div class=\"su-column-inner su-u-clearfix su-u-trim\">\n<div class=\"su-box su-box-style-default terminal\" id=\"\" style=\"border-color:#000000;border-radius:2px\"><div class=\"su-box-title\" style=\"background-color:#222;color:#FFFFFF;border-top-left-radius:0px;border-top-right-radius:0px\">Terminal<\/div><div class=\"su-box-content su-u-clearfix su-u-trim\" style=\"border-bottom-left-radius:0px;border-bottom-right-radius:0px\">\n# Logging<br \/>\nSyslogFacility AUTH<br \/>\nLoglevel INFO<\/p>\n<p># Authentication:<br \/>\nLoginGraceTime 120<br \/>\nPermitRootLogin <span class=\"tblue\">no<\/span><br \/>\nStrictMode yes<br \/>\n<span class=\"tblue\">AllowUsers user360<\/span><\/p>\n<p>RSAAuthentication yes<br \/>\nPubkeyAuthentication yes<br \/>\n#AuthorizedKeysFile %h\/.ssh\/authorized_keys<br \/>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n<p>Change the following settings and press CTRL+O (save file) and CTRL+X (exit)<\/p>\n<h4>Restart the SSH Server<\/h4>\n<p>Before our changes take effect we have to restart the SSH Server<\/p>\n<div class=\"su-row terminal-box\">\n<div class=\"su-column su-column-size-3-4\"><div class=\"su-column-inner su-u-clearfix su-u-trim\">\n<div class=\"su-box su-box-style-default terminal\" id=\"\" style=\"border-color:#000000;border-radius:2px\"><div class=\"su-box-title\" style=\"background-color:#222;color:#FFFFFF;border-top-left-radius:0px;border-top-right-radius:0px\">Terminal<\/div><div class=\"su-box-content su-u-clearfix su-u-trim\" style=\"border-bottom-left-radius:0px;border-bottom-right-radius:0px\">\nroot@caribou:~# <span class=\"tblue\">\/etc\/init.d\/ssh restart<\/span><br \/>\n[ ok ] Restarting ssh (via systemctl): ssh.service.<br \/>\nroot@caribou:~# <span class=\"tblue\">exit<\/span><br \/>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n<h5>Logging in as new user and switching to root<\/h5>\n<p>First we test if we&#8217;re still able to log in as root user<\/p>\n<div class=\"su-row terminal-box\">\n<div class=\"su-column su-column-size-3-4\"><div class=\"su-column-inner su-u-clearfix su-u-trim\">\n<div class=\"su-box su-box-style-default terminal\" id=\"\" style=\"border-color:#000000;border-radius:2px\"><div class=\"su-box-title\" style=\"background-color:#222;color:#FFFFFF;border-top-left-radius:0px;border-top-right-radius:0px\">Terminal<\/div><div class=\"su-box-content su-u-clearfix su-u-trim\" style=\"border-bottom-left-radius:0px;border-bottom-right-radius:0px\">\nlogin as: root<br \/>\nroot@caribou&#8217;s password: <span class=\"tblue\">\u2022\u2022\u2022\u2022\u2022\u2022<\/span><br \/>\nAccess denied<br \/>\nroot@caribou&#8217;s password:<br \/>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n<p>Now we log in as the user we set in the configuration file with the user&#8217;s password and switch to the root user afterwards<\/p>\n<div class=\"su-row terminal-box\">\n<div class=\"su-column su-column-size-3-4\"><div class=\"su-column-inner su-u-clearfix su-u-trim\">\n<div class=\"su-box su-box-style-default terminal\" id=\"\" style=\"border-color:#000000;border-radius:2px\"><div class=\"su-box-title\" style=\"background-color:#222;color:#FFFFFF;border-top-left-radius:0px;border-top-right-radius:0px\">Terminal<\/div><div class=\"su-box-content su-u-clearfix su-u-trim\" style=\"border-bottom-left-radius:0px;border-bottom-right-radius:0px\">\nlogin as: <span class=\"tblue\">user360<\/span><br \/>\nroot@caribou&#8217;s password: <span class=\"tblue\">\u2022\u2022\u2022\u2022\u2022\u2022<\/span><br \/>\nWelcome to your Server<\/p>\n<p>user360@caribou:~# <span class=\"tblue\">whoami<\/span><br \/>\nuser360<br \/>\nuser360@caribou:~# <span class=\"tblue\">su<\/span><br \/>\nPassword: <span class=\"tblue\">\u2022\u2022\u2022\u2022\u2022\u2022<\/span><br \/>\ncaribou user360 # <span class=\"tblue\">whoami<\/span><br \/>\nroot<br \/>\ncaribou user360 #<br \/>\n<\/div><\/div>\n<\/div><\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>This is just a short tutorial about one of many possible ways to protect your server from external attacks. If you&#8217;re running a Server you&#8217;ll probably access it via SSH and as root user. This is a default setting, but easy to fix with almost no effort. Since you&#8217;re able to log in as root, &hellip; <a href=\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\" class=\"more-link\">Continue reading<span class=\"screen-reader-text\"> &#8220;Disable root access for your SSH Server&#8221;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":217,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[5],"tags":[19,21,20],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v16.1.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Disable root access for your SSH Server | Caribou360<\/title>\n<link rel=\"canonical\" href=\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Disable root access for your SSH Server | Caribou360\" \/>\n<meta property=\"og:description\" content=\"This is just a short tutorial about one of many possible ways to protect your server from external attacks. If you&#8217;re running a Server you&#8217;ll probably access it via SSH and as root user. This is a default setting, but easy to fix with almost no effort. Since you&#8217;re able to log in as root, &hellip; Continue reading &quot;Disable root access for your SSH Server&quot;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\" \/>\n<meta property=\"og:site_name\" content=\"Caribou360\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Caribou360\/\" \/>\n<meta property=\"article:published_time\" content=\"2017-08-09T10:33:04+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-08-10T00:21:10+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/08\/pexels02.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"750\" \/>\n\t<meta property=\"og:image:height\" content=\"350\" \/>\n<meta name=\"twitter:card\" content=\"summary\" \/>\n<meta name=\"twitter:creator\" content=\"@Caribou360\" \/>\n<meta name=\"twitter:site\" content=\"@Caribou360\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\">\n\t<meta name=\"twitter:data1\" content=\"2 minutes\">\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/#organization\",\"name\":\"Caribou360\",\"url\":\"https:\/\/www.caribou360.com\/blog\/\",\"sameAs\":[\"https:\/\/www.facebook.com\/Caribou360\/\",\"https:\/\/www.instagram.com\/caribou360\/\",\"https:\/\/www.linkedin.com\/company\/caribou360\/\",\"https:\/\/twitter.com\/Caribou360\"],\"logo\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/#logo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/07\/caribou360-logo.png\",\"contentUrl\":\"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/07\/caribou360-logo.png\",\"width\":675,\"height\":225,\"caption\":\"Caribou360\"},\"image\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/#logo\"}},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/#website\",\"url\":\"https:\/\/www.caribou360.com\/blog\/\",\"name\":\"Caribou360\",\"description\":\"Superior Alaska Web Design\",\"publisher\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":\"https:\/\/www.caribou360.com\/blog\/?s={search_term_string}\",\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#primaryimage\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/08\/pexels02.jpg\",\"contentUrl\":\"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/08\/pexels02.jpg\",\"width\":750,\"height\":350,\"caption\":\"Caribou360 - Superior Alaska Web Design\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#webpage\",\"url\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\",\"name\":\"Disable root access for your SSH Server | Caribou360\",\"isPartOf\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#primaryimage\"},\"datePublished\":\"2017-08-09T10:33:04+00:00\",\"dateModified\":\"2017-08-10T00:21:10+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"item\":{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/\",\"url\":\"https:\/\/www.caribou360.com\/blog\/\",\"name\":\"Home\"}},{\"@type\":\"ListItem\",\"position\":2,\"item\":{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\",\"url\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/\",\"name\":\"Disable root access for your SSH Server\"}}]},{\"@type\":\"Article\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#webpage\"},\"author\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/#\/schema\/person\/ab9d766e213f226f255726e9d23d3303\"},\"headline\":\"Disable root access for your SSH Server\",\"datePublished\":\"2017-08-09T10:33:04+00:00\",\"dateModified\":\"2017-08-10T00:21:10+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#webpage\"},\"publisher\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.caribou360.com\/blog\/disable-root-access-ssh-server\/#primaryimage\"},\"keywords\":\"Linux,Server,SSH\",\"articleSection\":\"Linux\",\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/#\/schema\/person\/ab9d766e213f226f255726e9d23d3303\",\"name\":\"caribou\",\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/www.caribou360.com\/blog\/#personlogo\",\"inLanguage\":\"en-US\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/a44c75f8c33c20644e5b338e4f1ad752?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/a44c75f8c33c20644e5b338e4f1ad752?s=96&d=mm&r=g\",\"caption\":\"caribou\"}}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","jetpack_featured_media_url":"https:\/\/www.caribou360.com\/blog\/wp-content\/uploads\/2017\/08\/pexels02.jpg","jetpack_publicize_connections":[],"jetpack_shortlink":"https:\/\/wp.me\/p93bBe-3T","_links":{"self":[{"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/posts\/241"}],"collection":[{"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/comments?post=241"}],"version-history":[{"count":0,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/posts\/241\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/media\/217"}],"wp:attachment":[{"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/media?parent=241"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/categories?post=241"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.caribou360.com\/blog\/wp-json\/wp\/v2\/tags?post=241"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}