Following all steps on this preliminary CentOS server setup isn’t a should however strongly advisable. Nonetheless the choice is as much as you. I assumed you’ve gotten both VPS or Devoted server already so you’ll be able to observe this information.
On this instance, I exploit a VPS with 512Mb of RAM operating CentOS 6.Three x32 positioned in Amsterdam hosted by DigitalOcean.
Step 1 – Login to your distant server by way of SSH connection. You should utilize both use Terminal (Mac / Linux) or Putty in Home windows. It’s best to login as root.
Throughout your first login, Putty (or Terminal) will ask you to cache server’s host key within the registry and keep in mind server’s ras2 key fingerprint. Don’t panic and easily hit Sure.
Step 2 – Change default password for root. Generally a VPS or server is created utilizing random password generated by the supplier’s administration software program. It’s good follow to vary it to one thing simpler to recollect by you however laborious to crack or guess by others. Use this command syntax:
| 1 | passwd |
You’ll then be requested to enter your new password twice.
Be sure you use sturdy phrases and numbers mixture but in addition ensure you can simply keep in mind it.
Step 3 – Create new person. This new person shall be used so that you can login to your server within the subsequent time as a result of it’s a must to additionally disable root login (I’ll let you know within the subsequent steps) as a result of “root” is basically an ordinary username hackers can simply guess. It’s identical to “admin” or “administrator” in Home windows. Use command beneath to create new username:
| 1 | /usr/sbin/adduser newuser |
*change “newuser” above with your individual new username. On this instance I exploit my identify “sawiyati”.
Then challenge this command to setup password for that person:
| 1 | passwd newuser |
Upon hitting Enter in your keyboard your server will ask you to sort the password for that person.
Step 4 – Setup root privileges to that person so when you logged in to your server utilizing that new person you’ll nonetheless have the ability to carry out any root solely duties. To try this merely challenge this command:
| 1 | /usr/sbin/visudo |
then search for the road / part referred to as:
| 12 | # Person privilege specificationroot ALL=(ALL) ALL |
or in several CentOS launch it might additionally like this:
| 12 | ## Enable root to run any instructions whereverroot ALL=(ALL) ALL |
Then add this line proper after the foundation line:
## Enable root to run any instructions wherever root ALL=(ALL) ALL newuser ALL=(ALL) ALL
it ought to appear to be this:
Methods to edit? In the event you don’t have Nano editor put in but, merely hit “a” (with out quotes). As soon as achieved including new line, merely hit Esc key to exit enhancing mode. Now press Shift key + ZZ to save lots of and exit vi editor.
Step 5 – Change SSH default port and disable root login. That is what I imply in step Three above. On this case you’ll must edit “sshd_config” file which is the principle configuration file of SSH service in your server. You’ll be able to both use vi or Nano to edit it. On this instance I exploit Nano editor:
| 1 | nano /and so on/ssh/sshd_config |
Then nice following strains:
| 1 | #port 22 |
Take away the # image and alter the “22” (it’s default port) to to any quantity between 1025 and 65536, For instance is port 22000. Instance:
| 1 | port 22000 |
Subsequent, additionally discover:
| 1 | #PermitRootLogin sure |
Take away the # image and alter sure to no
PermitRootLogin no
So it’s going to appear to be this:
Subsequent, discover this line as effectively:
| 1 | #UseDNS sure |
Take away the # image and alter sure to no
UseDNS no
It might appear to be this:
Don’t shut Nano editor simply but, now proceed to the subsequent step:
Step 6 – Enable new person to login by way of SSH to your server. Merely add this line within the very backside of that file:
| 1 | AllowUsers newuser |
In fact it’s a must to change “newuser” with your individual username created within the step Three above. Instance:
As soon as achieved, hit Management+O to save lots of then Management+X to exit Nano editor.
Step 7 – Reload SSH service. To ensure the brand new configuration is utilized by the service, merely reload SSH through the use of this command:
| 1 | /and so on/init.d/sshd reload |
It ought to return with the OK message.
Step 8 – Give it a strive! I assumed presently you’re nonetheless logging in as root. Don’t shut that SSH session but earlier than you check it and ensure all of the settings you outlined in SSH config file actually works. Now launch one other Terminal window or launch one other Putty occasion then login utilizing new SSH port, new username, and naturally new password.
After the adjustments, you’ll see your new username as an alternative of root:
Add Comment