The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Step by Step SSH guide

Discussion in 'Security' started by martin MHC, Jan 18, 2017.

Tags:
  1. martin MHC

    martin MHC Active Member

    Joined:
    Sep 14, 2016
    Messages:
    29
    Likes Received:
    6
    Trophy Points:
    3
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Hello

    I have read lots about how it's unwise to access WHM with root, although
    it is really useful, the browser interface for stuff makes a lot of things easy and provides lots of feedback.

    However, I am aware accessing the root login is a potential risk and I am looking at how to minimise this risk,without loosin any abilities.

    So; I have setup a SSH key, for the root, which works perfectly for accessing winSCP / Putty / Filezilla etc. All good.

    My question comes that:

    - I would like to continue to use the WHM browser interface. How do I go about using this with my SSH key file? (Or am I confused and this is impossible?)

    ConfigServer Firewall tells me:
    Check SSH PasswordAuthentication :: For ultimate SSH security, you should consider disabling PasswordAuthentication and only allow access using PubkeyAuthentication

    - Once the above point 1 is setup, how do I go about disabling non-SSH logins using root? (I had researched this and thought I knew this, but that was a couple of months ago :-/ )

    Cheers
     
  2. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    15,629
    Likes Received:
    296
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
  3. martin MHC

    martin MHC Active Member

    Joined:
    Sep 14, 2016
    Messages:
    29
    Likes Received:
    6
    Trophy Points:
    3
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Thanks InfoPro -- I hadn't seen that post, it covers most of what I was looking for, but I am still curious about how to limit browser logins (SSH seems mutually exclusive to this endevour) . I am now also researching two factor authentication for browser logins.


    Cheers
     
  4. Infopro

    Infopro cPanel Sr. Product Evangelist
    Staff Member

    Joined:
    May 20, 2003
    Messages:
    15,629
    Likes Received:
    296
    Trophy Points:
    433
    Location:
    Pennsylvania
    cPanel Access Level:
    Root Administrator
    Twitter:
    cPanelMichael likes this.
Loading...

Share This Page