Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSH hardening #21

Open
1 of 2 tasks
The-Compiler opened this issue Mar 13, 2020 · 1 comment
Open
1 of 2 tasks

SSH hardening #21

The-Compiler opened this issue Mar 13, 2020 · 1 comment
Labels
enhancement New feature or request

Comments

@The-Compiler
Copy link
Member

The-Compiler commented Mar 13, 2020
edited
Loading

@fabianhauser fabianhauser added the enhancement New feature or request label Mar 22, 2020
@The-Compiler
Copy link
Member Author

We do already have an UFW rule to limit connection attempts. As for the rest, I'm not quite sure how to proceed. I originally intended to at least forbid password logins as root. However, we do have a strong root password, it's stored in our password store, and only two people (@dbrgn and I) seem to have SSH pubkeys set up. Then again, if someone gains access to the password store, it's pretty much game over anyways.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@fabianhauser @The-Compiler