How to prevent sshd service from being brute force cracked

As the name suggests, a hybrid hard drive is a combination of a mechanical hard drive and a solid-state drive. The hybrid hard drive uses smaller-capacity flash memory particles to store commonly used files, and the capacity is usually between 8 and 16GB. That is, a hard disk (SSD) with a built-in flash memory cache in the HDD. Solid-state hybrid drives take a traditional hard drive and add a small amount of fast, affordable NAND flash memory.

1, the password is complex enough

The length of the password should be greater than 8 characters, preferably greater than 14 characters. The complexity of the password is that the password should have numbers, uppercase and lowercase characters and special characters as much as possible Comply with the mixed composition

2, modify the default port number

3, do not use the root username to log in

Is it possible to prohibit root identity login?
No, because some programs need to be logged in and run as root,
In addition, to determine whether a user is a super administrator, look at whether the user's ID is 0
The following method cannot be used to prohibit root login because the pid of the sss user is 0,

New user

useradd sss

Set password

echo 123456 | passwd --stdin sss

Change configuration file

vim /etc/passwd

改:sss:x:1000:1000::/home/sss:/bin/bash为:sss:x:0:0::/home/sss:/bin/bash改:root:x:0:0:root:/root:/bin/bash为:root:x:0:0:root:/root:/sbin/nologin

In this way, you can use a normal account to log in in the future

sunlizhaodeMBP:~ sunlizhao$   ssh sss@192.168.137.162[root@localhost ~]#

Related recommendations:

12306 verification code cracking ideas sharing_javascript skills

position: relative/absolute level that cannot be broken through_experience exchange

The above is the detailed content of How to prevent sshd service from being brute force cracked. For more information, please follow other related articles on the PHP Chinese website!