OpenSSH: Disable password based login, force public/private key based auth

Published by Benjamin Wiedmann on

Be sure to already have a working public/private key ssh login setup. Otherwise you’ll be locked out after activating this changes!

Change the following config parameters in /etc/ssh/sshd_config to read as:

ChallengeResponseAuthentication no
PasswordAuthentication no
UsePAM no

Restart sshd. Have fun. Stay more secure.

Is your SSHd listening on the default port (22/TCP)? Ever thought about changing ssh to listen to some random port? It’s easy!

Benjamin Wiedmann

Benjamin Wiedmann is an IT Professional, Software Developer, Photograph and Musician. Read more...

More Posts - Website

Follow Me:
TwitterLinkedInGoogle Plus

Categories: LinuxNetworking
Tags:

Benjamin Wiedmann

Benjamin Wiedmann is an IT Professional, Software Developer, Photograph and Musician. Read more...

0 Comments

Leave a Reply

Avatar placeholder

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Related Posts

Jolla

Remove all contacts on your Jolla phone

Ever wanted to start over with contact sync by deleting all contacts from your Jolla phone? Be sure to have a proper contacts backup  before proceeding! Stop contacts service: systemctl --user stop contactsd.service Remove all Read more…

Development and hacking

Stop Jolla’s TOH based battery drain

As of update 1.0.3.8 the battery life just got better, but if you want, you can try out this. Maybe it’ll improve Jolla’s battery life a bit… Disable TOH service: devel-su systemctl mask tohd.service systemctl stop tohd.service Read more…

Apache

SPDY Install / update script for Debian / Ubuntu

cd /root rm mod-spdy-beta_current_amd64.deb wget https://dl-ssl.google.com/dl/linux/direct/mod-spdy-beta_current_amd64.deb dpkg -i mod-spdy-*.deb apt-get -f install /etc/init.d/apache2 restart Benjamin WiedmannBenjamin Wiedmann is an IT Professional, Software Developer, Photograph and Musician. Read more...More Posts - Website Follow Me: