Showing posts with label ssh. Show all posts
Showing posts with label ssh. Show all posts

Saturday, 1 March 2014

Public Key Authentication SSH (Debian, Ubuntu)

Generate RSA keys on Client

mkdir ~/.ssh 
chmod 700 ~/.ssh 
ssh-keygen -t rsa -b 4096

Transfer Client Key to Host

ssh-copy-id username@host

Test

ssh username@host

Disable Password Authentication On Host

sudo nano /etc/ssh/sshd_config


Look for <#PasswordAuthentication yes> and change it to <no>.

Restart SSH

sudo service ssh restart

DONE

Wednesday, 26 February 2014

How To Monitor Failed SSH Attempts

Disable Password Authentication for better Security

More about SSH can be found here.

You might be astonished how many people try to break into your computer via ssh. It is advisable to use key-based authentication only. Article for key-based authentication.

Enable monitoring

sudo gedit /etc/ssh/sshd_config
--> change LogLevel INFO to LogLevel VERBOSE

SSH login attempts will now be saved in your /var/log/auth.log file.

Accessing the information

sudo cat /var/log/auth.log | grep sshd
sudo cat /var/log/auth.log | grep Fail

sudo cat /var/log/auth.log | grep Invalid

Disabling SSH all-together

sudo mv /etc/init/ssh.conf /etc/init/ssh.conf.disabled