One of the biggest security holes you could open on your server is to allow directly logging in as root through ssh, because any cracker can attempt to brute force your root password and potentially get access to your system if they can figure out your password.
It’s much better to have a separate account that you regularly use and simply sudo to root when necessary. Before we begin, you should make sure that you have a regular user account and that you can su or sudo to root from it.
To fix this problem, we’ll need to edit the sshd_config file, which is the main configuration file for the sshd service. The location will sometimes be different, but it’s usually in /etc/ssh/. Open the file up while logged on as root.
Find this section in the file, containing the line with “PermitRootLogin” in it.
Make the line look like this to disable logging in through ssh as root.
Now you’ll need to restart the sshd service:
Now nobody can brute force your root login, at least.
- › NZXT Signal 4K30 Capture Card Review: Lossless High-Quality Footage
- › How Far Can an Electric Car Go on One Charge?
- › How Much Does It Cost to Recharge a Battery?
- › “Atari Was Very, Very Hard” Nolan Bushnell on Atari, 50 Years Later
- › The 10 Best Netflix Original Movies in 2022
- › T-Mobile Is Selling Your App Activity: Here’s How to Opt Out