Yadda ake kashe Tushen SSH Login a Linux

Tushen asusun galibi shine asusun da aka fi niyya ta masu fashe ta hanyar SSH a ƙarƙashin Linux. Tushen asusun SSH da aka kunna akan sabar Linux da aka fallasa zuwa cibiyar sadarwa ko, mafi muni, fallasa a Intanet na iya haifar da babban matakin tsaro daga masu gudanar da tsarin.

Dole ne a kashe tushen asusun SSH a kowane yanayi a cikin Linux don taurare tsaron uwar garken ku. Ya kamata ku shiga ta hanyar SSH akan uwar garken nesa kawai tare da asusun mai amfani na yau da kullun kuma, sannan, canza gata zuwa tushen asusun ta hanyar sudo ko umarnin su.

Domin musaki tushen asusun SSH, da farko shiga cikin uwar garken console ɗinku tare da asusun al'ada tare da tushen gata ta hanyar ba da umarni na ƙasa.

$ su tecmint
$ sudo su -   # Drop privileges to root account

Bayan kun shiga don ta'aziyya, buɗe babban fayil ɗin daidaitawar SSH don gyara tare da editan rubutu da kuka fi so ta ba da umarnin da ke ƙasa. Babban fayil ɗin SSH yana yawanci yana cikin /etc/ssh/ directory a yawancin rarrabawar Linux.

# vi /etc/ssh/sshd_config

A cikin wannan fayil ɗin, bincika layin PermitRootLogin kuma sabunta layin don yin kama da shi a cikin bayanan fayil ɗin da ke ƙasa. A kan wasu rarraba Linux, layin \PermitRootLogin yana gaba da alamar hashtag (#) ma'ana cewa an yi sharhi akan layi. A wannan yanayin rashin jin daɗin layin ta hanyar cire alamar hashtag kuma saita layin zuwa a'a.

PermitRootLogin no

Bayan kun yi canje-canjen da ke sama, adanawa ku rufe fayil ɗin kuma sake kunna SSH daemon don aiwatar da canje-canje ta hanyar ba da ɗayan umarnin da ke ƙasa, musamman ga rarraba Linux ɗin ku.

# systemctl restart sshd
# service sshd restart
# /etc/init.d/ssh restart

Domin gwada idan an sami nasarar amfani da sabon saitin, gwada shiga tare da tushen asusun zuwa uwar garken ta hanyar SSH daga tsarin nesa ta hanyar ba da umarnin da ke ƙasa.

Sabar SSH ɗin mu ya kamata a hana tsarin shiga SSH mai nisa don tushen asusun, kamar yadda aka kwatanta a hoton da ke ƙasa.

Shi ke nan! Ba za ku iya shiga cikin nesa ba zuwa uwar garken SSH tare da tushen asusun ta hanyar kalmar sirri ko ta hanyoyin tantance maɓalli na jama'a.