📝 Made note on how to set up sshd client
This commit is contained in:
z3rOR0ne
parent
01d44f68d7
commit
d8ec758d2d
2 changed files with 26 additions and 0 deletions
11
harden_sshd.txt
Normal file
11
harden_sshd.txt
Normal file
|
|
@ -0,0 +1,11 @@
|
|||
/etc/ssh/sshd_config
|
||||
|
||||
PermitEmptyPasswords no
|
||||
Port 2345 (or some other port than default 22)
|
||||
PermitRootLogin no
|
||||
ClientAliveInterval 300
|
||||
ClientAliveCountMax 2
|
||||
X11Forwarding no
|
||||
MaxAuthTries 3
|
||||
|
||||
sshd -T
|
||||
15
updates.txt
15
updates.txt
|
|
@ -38,3 +38,18 @@ make sure to install all of the test files (jest should already be set up, but y
|
|||
doas npm install -g jest
|
||||
pip install pytest
|
||||
|
||||
sshd is disabled by default on Artix (a good practice), but let's enable it, follow your harden_sshd.txt guide (just some flags), and add a down file to disable it:
|
||||
|
||||
doas ln -s /etc/runit/sv/sshd /run/runit/service
|
||||
|
||||
doas sv start sshd
|
||||
|
||||
edit /etc/ssh/sshd_config file using harden_sshd.txt guide
|
||||
|
||||
cd /etc/runit/sv/sshd
|
||||
|
||||
doas touch down
|
||||
|
||||
doas chmod +x down
|
||||
|
||||
doas sv stop sshd
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue