Hardening SSHD for Security

The secure shell daemon should be hardened to prevent unauthorised access before being put into a production environment or exposed to the internet. 1. Verify the /etc/ssh/sshd_config file contains the following lines and that they are not commented out: Protocol 2 IgnoreRhosts yes HostbasedAuthentication no PermitRootLogin no PermitEmptyPasswords no AllowTcpForwarding no (unless needed) X11 Forwarding… Read more »

Secure Administrator account in Active Directory

Securing the Administrator account in Active Directory You may be thinking this should be common knowledge but time and time again I see directories with the Administrator account still in the “Domain Admins” group and active! Before you do this, ensure you are not using the domain administrator account for authenticating! I always follow a… Read more »