Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-210 days agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square81fedilinkarrow-up1105arrow-down14file-text
arrow-up1101arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-210 days agomessage-square81fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-squarenanook@friendica.eskimo.comlinkfedilinkarrow-up6arrow-down1·10 days agoYou can disasble passwords so ONLY keys work, and you can firewall ssh to ONLY IPs you originate from.
minus-squaregrrgyle@slrpnk.netlinkfedilinkarrow-up2·9 days agoJust don’t forget to check if your IP has changed if ssh suddenly starts timing out with no error indication no matter what you do and oh god what is actually wrong I think there’s a way to setup an alert for this.
You can disasble passwords so ONLY keys work, and you can firewall ssh to ONLY IPs you originate from.
Just don’t forget to check if your IP has changed if ssh suddenly starts timing out with no error indication no matter what you do and oh god what is actually wrong
I think there’s a way to setup an alert for this.
Or use port-knocking.