Comments on: 5 Best OpenSSH Server Best Security Practices

By: Ravi Saive

Ravi Saive — Mon, 11 Oct 2021 05:44:13 +0000

@Trevor

Thanks, I have updated the article and corrected the typo as suggested…

By: Trevor Harvey

Trevor Harvey — Mon, 11 Oct 2021 04:10:59 +0000

Reads:

“This is very useful if you are dealing with remote automated backups, remote scripting execution, file transfer, remote script management, etc without entering the password each time.”

See quoted para: it has a typo and a grammatical error.
Should read … “without entering a password each time.”

By: Fahad Rafiq

Fahad Rafiq — Mon, 02 Mar 2015 15:38:13 +0000

Great Practice, Thanks for Guiding. Cloudways is also integrated Whitelist IP in their Platform. It automatically block bot login attempts.

By: nothxiprefermetal

nothxiprefermetal — Mon, 26 Jan 2015 22:16:41 +0000

While this won’t stop malicious users, it’s advised to put in place. An instructor from a Cisco training that I was in attendance of stated that there have been multiple instances where a “hacker” has gotten off free for their crimes due to the fact that there was nothing anywhere on the server stating that the “hacker” or anybody else for that matter, were not allowed to access the server.

Sure, they’re still going to get access if they want it, but it holds up a lot better in the Judicial system. Every since hearing that, I have set banners and MOTD on every server that I am in charge of because why not? They take just a few seconds to copy and paste in, and could save you some trouble when it comes to court proceeding… then again, I deal with customers who have A LOT to lose.

By: Robert

Robert — Sun, 25 Jan 2015 15:07:39 +0000

“4. Display SSH Banner” — huh?
I guess you think putting a sign on your car that says “it is illegal to steal me” will stop auto-thieves too?
As long as your at it, you might include the sentence “it is illegal to do things that are against the law” too. That’ll help!
-RU