Drop Down MenusCSS Drop Down MenuPure CSS Dropdown Menu

How to change ssh port number & username instead connecting root user ?

1.Open the ssh configureation file
vi /etc/ssh/sshd_config 
port 217
PermitRootLogin no
You can disable root login by finding the line that says "PermitRootLogin yes" you can change it to "PermitRootLogin no"
2.Then you'll just need to restart ssh

service sshd restart
3.You can create a new username with 'useradd username' what ssh user do you want
useradd rajick
passwd  rajick
give "rajick' user password
4.You can enable sudo access by running this command  file will be open then add rajick user access

then add this line "username ALL=(ALL) ALL" username is whatever username you have I HAVE rajick so given as rajick
# visudo
root    ALL=(ALL)       ALL
rajick  ALL=(ALL)       ALL
Note:Sudo will allow you to change into root

5.ADDING PORT ON FIREWALL:

After changed everything if your server running on firewall you have to add your new port on firewall  configuration file.

 Installation Of csf firewall on centoS/RED hat
#vi /etc/csf/csf.conf
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,217"
Note: It's only needed in tcp_in,You can add it to both if you want, but tcp_out won't do anything,No changes are needed for udp_in or udp_out. SSH uses TCP.
csf.allow is used to open all ports for specific IP addresses,You don't need to make any changes to it, but you can add your local IP if you want.

After any changes you'll need to restart csf with:
#csf -r

6.USER Switching problem at linux

[rajick@vps ~]$ su -
-bash: /bin/su: Permission denied

If the user has sudo privelages you should be able to use 
'sudo -s' or 'sudo su root'

$ sudo -s
[sudo] password for rajick:
[root@vps rajick]#
7.check the SSH connection
login as: root
root@88.202.123.123's password:
Access denied
root@88.202.123.123's password:
Note this root user not allowed,only rajick user allowed but port should be 217




And more about CSF(configure security firewall) firewall:
 

This checked for a block on your IP:
#csf -g 103.5.133.63 

note:you can check your internet ip at your google search keyword "MY ip" 

This removed the block Ip:
#csf -dr 103.5.133.63

Note:your ip will be blocked if 5 failed logins in an hour.

Comments

Popular posts from this blog

VMWARE WORKSTATION 3,4,5,6,7,8,9,10,11,12,14,15...etc LICENSE KEYS COLLECTION

How to find the server is whether standby (slave) or primary(master) in Postgresql replication ?

How to Configuration UDEV SCSI Rules In Oracle Linux 5, 6 and 7

aspell

Linux ctime,mtime,atime,cmin,amin,mmin