SSH security tips and tricks

Advanced SSH security tips and tricks:

There are advanced settings which can be performed to make your ssh more secure. All this settings can be configured in /etc/ssh/sshd_config. I came across this article on Linux.com. This is quick pick on the tips:

  1. SSH listens for connections on port 22. Attackers use port scanner software to see whether hosts are running an SSH service.
    Edit the /etc/ssh/sshd_config file change the port number for the following line:
    Port 22
    Restart the SSH service:
    /etc/init.d/ssh restart
  2. SSH2 is more secure than SSH1; So just use SSH2 protocol.
    Edit /etc/ssh/sshd_config and look for the line that says:
    Protocol 2,1
    Change the line so it says only protocol 2.
  3. Disable the Root access to the SSH config file. Edit the following line in the file
    PermitRootLogin yes
    Change yes to no and restart the service.

The entire source article can be found here:
http://www.linux.com/feature/61061