Mission 24

SSH hardening

Read training SSH settings and confirm safer defaults without connecting anywhere.

Security administration
9 minutes Core Lesson 24 of 360
grepcatjournalctl
Lesson 24 of 360 0/360 lessons 0/17 missions Security administration · 9 minutes
0%
Continue View profile
Ops lab terminal Training lab
New learnerrank 0XP 0%complete
learner@clairos:/home/learner $ Unix ops lab: type a command, press Enter
Instructions 9 minutes

Click any instruction for the command details, the why, and the common mistake to avoid.

Check password auth

Run grep PasswordAuthentication /etc/ssh/sshd_config.

grep PasswordAuthentication /etc/ssh/sshd_config
Check root login

Run grep PermitRootLogin /etc/ssh/sshd_config.

grep PermitRootLogin /etc/ssh/sshd_config
Read SSH journal

Run journalctl -u ssh.

journalctl -u ssh
Lesson support

What to notice while you play.

Objective

Inspect password login, root login, and SSH activity.

Hint

Use grep on /etc/ssh/sshd_config.

Why it matters

SSH is a common administrative entry point and deserves careful review.

Common mistakes
  • Testing with real connections from a training page.
  • Only checking one setting.
Reference

Commands in this lesson.

cat <file>

Print text file contents.

grep [-i] <text> <file>

Find literal text inside a file.

journalctl -u <service>

Read simulated service journal entries.