How To Prevent SSH Root Access
February 7th, 2008 · 1 Comment
While this is a well know security measure, I still see so many Linux servers that allow root login through SSH that I thought I’d post it here.
Before you make change to your Linux box, make sure that you’ve got a normal user account created otherwise you’ll lock yourself out unless you’ve got physical access to your server. Here’s how you can add a user account through command lines:
# adduser newusername
# passwd newusername
To prevent SSH root login on CentOS 5.1 / RHEL 5, edit /etc/ssh/sshd_config with your favorite file editor:
# vi /etc/ssh/sshd_config
And find the line that contains:
#PermitRootLogin yes
Uncomment the parameter and set its value to ‘no’:
PermitRootLogin no
Now save the change and exit the editor. Restart sshd service to apply the change.
# service sshd restart
From now on you will not be able to login as root first. You will have to login as a normal user and then become root by issuing:
# su – root
Related Posts
- Web-Based Java SSH Client
- How To Change Your Linux Server’s Hostname
- Linux Basics: Scheduling Tasks Using Cron
- Linux Basics: Understanding File Ownership And Permissions
- Linux Basics: Where Are Those Hidden Files?
- Find Out How Much Space A Directory Is Using On Linux / Unix
- How To Use “Screen” To Keep Session Alive Upon Network Failure
- Analyzing Raw Apache Visitor Log Files for Analytics and Security
Top 10 Linux Hosting Providers
| 1 | InMotion Hosting - $5.95 |
| 2 | WebHostingHub - $4.95 |
| 3 | iPage - $2.99 |
| 4 | JustHost - $3.45 |
| 5 | HostGator - $4.95 |
| 6 | FatCow - $3.67 |
| 7 | GreenGeeks - $4.95 |
| 8 | HostMonster - $5.95 |
| 9 | BlueHost - $6.95 |
| 10 | GoDaddy - $4.31 |
Popular Posts
- OpenX Vulnerability: "This Site May Harm Your Computer"
- Using Loops in Dynamic PHP Application Code
- Examples of Websites Hosted with iPage
- Amazon EC2 vs Rackspace Cloud: Which Option is the Best?
- Examples of Websites Hosted by InMotion Hosting
- Working with the Drupal Content Construction Kit
- BlueHost New Website Unveiled
- Cloud Hosting vs Shared Hosting : What are the Differences?
Tutorials by Category
- Apache (15)
- ASP & ASP.NET (1)
- Control Panels (62)
- Drupal Tutorials (2)
- Email Tutorials (1)
- IIS (5)
- Linux (16)
- Misc (15)
- MySQL (16)
- Perl (1)
- PHP (23)
- Ruby on Rails (1)
- Security (5)
- Virtualization (6)
- Windows Server (13)
- Wordpress Tutorials (7)
Latest Posts
- Using Drizzle DB with your PHP Site
- Web Hosting Sales & Coupons Roundup – Aug. 2010
- Rackspace now has Cloud Servers for Windows
- Amazon EC2 vs Rackspace Cloud: Which Option is the Best?
- Examples of Websites Hosted by InMotion Hosting
- Cloud Hosting: Where is my Web Site Actually Located?
- OpenX Vulnerability: “This Site May Harm Your Computer”
- Examples of Websites Hosted with iPage
- An Overview of the Code Igniter PHP Framework
Recent Comments
- HostMonster vs GoDaddy
shortshire: I use godaddy for my person stuff and hostmonster at work. Hostmonster has problems... - FatCow vs GoDaddy – Website Hosting Comparison
Matija: I love fatcow. I have several websites hosted there. I... - Free Web Hosting Control Panels – Part 2
Solidhost: Yes, ispCP omega is very promising hosting panel. I am... - Examples of Websites Hosted with iPage
Tingting Rimart: Thank you for including my site in your list of sample iPage... - What is FFmpeg Hosting?
Shawn: I have had PacificHost for a couple months now. If the service doesn’t get better...
1 response so far ↓
1. Response by : How To Move A Website Between Webservers Using cPanel / WHM on May 5, 2008 at 12:04 am
[...] Before we go any further, you must ensure that the root user can connect to the source server through SSH. This is usually forbidden but you can permit it for the time you will be copying accounts. Read this tutorial for more information on enabling and disabling SSH root access. [...]
Leave a Comment