Back

How to change ssh port number & username instead direct root user access ?

1. Open the ssh configureation file

vi /etc/ssh/sshd_config 
port 217
PermitRootLogin no

You can disable root login by finding the line that says “PermitRootLogin yes” you can change it to “PermitRootLogin no”
2.Then you’ll just need to restart ssh

service sshd restart

3.You can create a new username with ‘useradd username’ what ssh user do you want

useradd rajick
passwd  rajick

give “rajick’ user password
4.You can enable sudo access by running this command  file will be open then add rajick user access

then add this line “username ALL=(ALL) ALL” username is whatever username you have I HAVE rajick so given as rajick 

# visudo
root    ALL=(ALL)       ALL
rajick  ALL=(ALL)       ALL

Note:Sudo will allow you to change into root

5.ADDING PORT ON FIREWALL:
After changed everything if your server running on firewall you have to add your new port on firewall  configuration file.
 Installation Of csf firewall on centoS/RED hat

#vi /etc/csf/csf.conf
TCP_IN = "20,21,22,25,53,80,110,143,443,465,587,993,217"

Note: It’s only needed in tcp_in,You can add it to both if you want, but tcp_out won’t do anything,No changes are needed for udp_in or udp_out. SSH uses TCP.
csf.allow is used to open all ports for specific IP addresses,You don’t need to make any changes to it, but you can add your local IP if you want.

After any changes you’ll need to restart csf with: 
#csf -r

6.USER Switching problem at linux

[rajick@vps ~]$ su -
-bash: /bin/su: Permission denied

If the user has sudo privelages you should be able to use 
'sudo -s' or 'sudo su root'

$ sudo -s
[sudo] password for rajick:
[root@vps rajick]#

7.check the SSH connection 

login as: root
root@88.202.123.123's password:
Access denied
root@88.202.123.123's password:

Note this root user not allowed,only rajick user allowed but port should be 217

And more about CSF(configure security firewall) firewall:
 
This checked for a block on your IP:
#csf -g 103.5.133.63 
note:you can check your internet ip at your google search keyword “MY ip” 

This removed the block Ip:
#csf -dr 103.5.133.63
Note:your ip will be blocked if 5 failed logins in an hour.

Tag:, ,

author avatar
bushra.rayafeel

You may also like

MS SQL Server: What Is It?
24 February, 2023

Microsoft SQL Server is a relational database management system (RDBMS) that has a lengthy history and numerous modifications that have been added throughout time. The most recent version is 15.0, although SQL Server versions 1996 and 1999 are not regarded …

Recruitment Process Outsourcing Can Benefit Businesses
24 February, 2023

Business might benefit from outsourcing the recruitment process. We are familiar with the concept of outsourcing in the workplace. There are many businesses that use this technique to satisfy the demands of the workers. Many stakeholders are involved in the …

Cheapest Virtual Office Booking for GST Registration in Chennai – Rayafeel
24 February, 2023

Introduction In the fast-paced business world, having a reliable partner for GST registration is crucial. Chennai, a bustling metropolis known for its vibrant trade and commerce, offers numerous options for GST registration services. However, if you’re looking for a top-notch …

Leave A Reply

Connect with