It's not surprising that OpenSSH is built into the minimal base of all the BSD operating systems—after all, the OpenSSH project is part of the OpenBSD project. OpenSSH makes it easy to remotely administer a system over a secure, encrypted connection and to securely scp(1) and sftp(1) files between systems.

While the SSH server is secure out-of-the-box, the sshd_config file allows you to tighten its security even further. sshd_config(5) gives the details for all the possible keywords; some that bear investigating are

• AllowUsers Allows you to list which users are authorized to connect.

• MaxAuthTries Allows you to limit the number of authentication attempts per connection.

• MaxStartups Allows you to specify the number of concurrent connections.

• PermitRootLogin Specifies whether the superuser is allowed to log in over an SSH connection.

• UsePrivilegeSeparation Prevents privilege escalation.

^^^ffll Changes to this configuration file will not take effect until you reload the SSH daemon. On FreeBSD ■■■■I and NetBSD, you will find an rc script for sshd in /etc/rc.d/.

Was this article helpful?

0 0
The Ultimate Computer Repair Guide

The Ultimate Computer Repair Guide

Read how to maintain and repair any desktop and laptop computer. This Ebook has articles with photos and videos that show detailed step by step pc repair and maintenance procedures. There are many links to online videos that explain how you can build, maintain, speed up, clean, and repair your computer yourself. Put the money that you were going to pay the PC Tech in your own pocket.

Get My Free Ebook

Post a comment