Your Ultimate Information Platform

The way to configure SSH entry by way of Webmin

0

[ad_1]

Searching for a better approach to configure SSH in your knowledge middle servers? How about Webmin? Jack Wallen walks you thru a number of the choices for higher SSH safety utilizing this web-based GUI.

webminhero.jpg

Almost each Linux server I administer is finished by way of SSH. On condition that I have been working with Linux for over 20 years, configuring SSH with an eye fixed on safety is fairly easy for me. However most frequently I am doing this on smaller deployments, the place there would possibly solely be a handful of customers which have to realize entry to the server. With these machines, I are likely to handle the SSH configuration manually (as in enhancing the ssh_config and sshd_config recordsdata by way of a textual content editor).

SEE: Safety incident response coverage (TechRepublic Premium)

However what for those who’re working with bigger deployments in knowledge facilities? You most likely do not need to must handle these configurations utilizing nano or vi. And if you have already got Webmin deployed, you may have the means to make these configuration modifications significantly simpler. 

Let me present you ways.

What you will want

To make this work, you will want Webmin put in in your distribution of alternative. I’ve already coated the way to set up Webmin on Ubuntu and Rocky Linux. Give these articles a learn to get Webmin up and working in your server distribution of alternative. After you have Webmin up and working, you are all set to configure SSH.

The way to configure SSH by way of Webmin

Log into Webmin after which click on the Webmin tab after which develop the Servers entry (Determine A).

Determine A

webminssha.jpg

The SSH entry in Webmin is discovered underneath Servers within the Webmin tab.

Within the SSH part (Determine B), click on Authentication.

Determine B

webminsshb.jpg

The varied SSH choices can be found for configuration in Webmin.

The very first thing you will do is choose No for Permit Login by Root (Determine C). As soon as you have completed that, click on Save. In case you plan to arrange SSH key authentication, you will need to depart Permit Authentication by Password set to Sure till you get your key authentication arrange for all customers that distant into that server.

Determine C

webminsshc.jpg

Configure SSH to disallow root consumer login.

Click on Return to Module Index after which click on Entry Management. On this window (Determine D), you possibly can configure which customers and teams are allowed to entry the server by way of SSH.

Determine C

webminsshc.jpg

Limiting SSH entry to both customers or teams.

In case you decide to go the group route, you will must first create the brand new group and add customers to the brand new group. That is all taken care of in System | Customers, and Teams. Say, for example, you have created a brand new group known as editorial and added the mandatory customers. As soon as you have completed that, return to the SSH Entry Management, click on the test field to the proper of All (related to Solely Permit Members of Teams), after which sort editorial within the textual content discipline. Click on Save and return to the Module index. As soon as within the index, click on Apply Modifications. At this level, you have restricted SSH entry to solely the customers in that group. Simply make certain to check the brand new configuration earlier than you do the rest.

Subsequent, you would possibly take into account configuring SSH to make use of a non-standard port. For that, click on on the Networking choice within the Webmin SSH config window. Right here (Determine E), you possibly can change the default port from 22 to no matter you’d moderately use. 

Determine D

webminsshd.jpg

Configure SSH to make use of a non-standard port.

As soon as you have modified the port, make certain to click on Save after which click on Apply Modifications within the module index. One factor to contemplate, nevertheless, is for those who’re engaged on a Linux distribution that employs SELinux, you will want to tell the safety system of the change to the brand new port. Out of the field, Webmin would not embody an SELinux module, so that you’d must handle that manually with a command like:

sudo semanage port -a -t ssh_port_t -p tcp 2112

As soon as you have completed that, SSH will be accessed like so:

ssh 192.168.1.169 -p 2112

And that is how one can extra simply configure SSH utilizing the Webmin GUI. When you may have a big knowledge middle stuffed with Linux servers, that is the extra environment friendly (and simpler) approach to go.

Subscribe to TechRepublic’s How To Make Tech Work on YouTube for all the most recent tech recommendation for enterprise professionals from Jack Wallen.

Additionally see

[ad_2]

Leave A Reply

Your email address will not be published.