How to fix this error? my server provider told me that some iptables rules blocking most of the ports.. I am really beginner to Linux CentOS..
Any help really appreciated..
Thanks
Any help really appreciated..
Thanks
Hi,
If you have a KVM, VNC, or IMPI access of your machine, then you will have to disable the firewall first on your machine..
Did you change the SSH port?
If you have a KVM, VNC, or IMPI access of your machine, then you will have to disable the firewall first on your machine..
Did you change the SSH port?
I was reinstall sshd with success, what configuration I need to do?
sshd was running. but i dont know if I need to make configuration to secure it?
sshd was running. but i dont know if I need to make configuration to secure it?
I dont change the SSH port. it is 22.. does i need to disable firewall now?
Last edited by a moderator:
To secure SSHD you have to change ssh port as well as disable direct root access.
Did you installed any other firewall on your server ? like csf or apf ?
As others have pointed out, you should:
Manage Wheel Group Users - Documentation - cPanel Documentation
Manage root's SSH Keys - Documentation - cPanel Documentation
SSH Password Authorization Tweak - Documentation - cPanel Documentation
It's best to make these changes via console access, that way, if a change you make results in no access, you can easily revert.
- Change the SSH port and ensure the new port is open in iptables
- Setup a wheel user and disable root SSH access
- Setup SSH keys and disable password authentication
Manage Wheel Group Users - Documentation - cPanel Documentation
Manage root's SSH Keys - Documentation - cPanel Documentation
SSH Password Authorization Tweak - Documentation - cPanel Documentation
It's best to make these changes via console access, that way, if a change you make results in no access, you can easily revert.
I think there is not other firewall. it just iptables.. does any port that haven't been used would be okay?
Does console access mean IPMI would be suitable? Thank you for the documentation..
Hello,
Any utility that allows you to access the server and run commands outside of the SSH service would be suitable. You may also find this thread helpful for choosing an SSH port and configuration:
[Tutorial] Interested in increasing the security of your server? Read this. (sshd hardening)
Thank you.
Any utility that allows you to access the server and run commands outside of the SSH service would be suitable. You may also find this thread helpful for choosing an SSH port and configuration:
[Tutorial] Interested in increasing the security of your server? Read this. (sshd hardening)
Thank you.
