X-Git-Url: https://feistymeow.org/gitweb/?a=blobdiff_plain;f=infobase%2Fconfiguration%2Fssh%2Fmods_for_etc_sshd_config.txt;fp=infobase%2Fconfiguration%2Fssh%2Fmods_for_etc_sshd_config.txt;h=322fdbacb18ecc8f51004a9866025ca8ae54aeca;hb=2394b13f6cbc32a692e5e6ccf1f350e75e2b5455;hp=0000000000000000000000000000000000000000;hpb=3dc9b99255d7c1862e0c2e94876f6720180ff2b2;p=feisty_meow.git

diff --git a/infobase/configuration/ssh/mods_for_etc_sshd_config.txt b/infobase/configuration/ssh/mods_for_etc_sshd_config.txt
new file mode 100644
index 00000000..322fdbac
--- /dev/null
+++ b/infobase/configuration/ssh/mods_for_etc_sshd_config.txt
@@ -0,0 +1,17 @@
+
+to increase security on an sshd server, and assuming you have
+registered your ssh keys ahead of time in authorized_keys, then
+this bit goes in /etc/sshd_config (at the end works fine):
+
+##############
+
+# fred mods 2019-02-19:
+# trying to keep intruders out...  this disables password logins.
+# also of course disables root logins, which should already have been done.
+PermitRootLogin no
+ChallengeResponseAuthentication no
+PasswordAuthentication no
+UsePAM no
+
+##############
+