https://ndonaghy.com/tags/sshd/ Recent content in Sshd on Niall Donaghy Hugo en-gb Tue, 07 Apr 2026 01:57:29 +0100 https://ndonaghy.com/posts/openbsd-sshd-hardening/ Tue, 07 Apr 2026 01:57:29 +0100 https://ndonaghy.com/posts/openbsd-sshd-hardening/ <h1 id="goals">Goals:</h1> <ul> <li>a sane sshd configuration</li> <li>a sane pf configuration</li> <li>optional: add sshguard (but recommended)</li> </ul> <h1 id="setup-ssh-for-your-main-user">setup SSH for your main user</h1> <p>Your main user is not root. :)</p> <p>Change to your regular user and setup SSH dirs:</p> <pre tabindex="0"><code>su - niall mkdir -p /home/niall/.ssh chmod 700 /home/niall/.ssh chown niall:niall /home/niall/.ssh # add pubkey(s) you want to be authorised for login nano /home/niall/.ssh/authorized_keys &lt;paste in&gt; </code></pre><p>Default /etc/ssh/sshd_config has key-based login enabled, so test it now:</p>