SSH

OpenSSH

OpenSSH is the implementation of the SSH protocol on Ubuntu.

However, the main advantage is server authentication, through the use of public key cryptography.

Here are a few things you need to tweak in order to improve OpenSSH server security.

IMPORTANT: Before making any modifications to the /etc/sshd_config file, make a backup by: 

sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.factory-defaults

…and 

sudo chmod a-w /etc/ssh/sshd_config.factory-defaults

NOTE: Not all of the possible changes mentioned below have to be made.

Some changes are not recommended to be made but may offer tighter security depending on your requirements.

Blacklist a public key

Change the Port

Check the Current SSH Ports

Configure sshd

Configure sshd with multiple authentication factors

Configuring sshd

Creating public/private key authentication for SSH

Disabling sshd

Distribute public keys

ERROR - SSH Connection Refused

Get the host's fingerprint

Install SSH

Limit user logins

Manage SSH Key File With Passphrase

Override socket-activated SSH

Port Forwarding

Restart SSH

Setup SSH Keys

SSH Login Message

Test mode

Troubleshooting SSH

Two-Factor Authentication (using Google Authenticator)