I have gained this from philosophy: that I do without being commanded what others do only from fear of the law.
- Aristotle

Поиск

Меню навигации

eng рус укр

Inspire Software

Проекты

Статьи

Unix/Find command aliases

Unix/New ssh user

Mvn platform dependent

Maven Install Problem

SVN Permission denied

Mvn Source Download IDE

Unfortunately, there is no translation for this page. We have redirected you to the english version of the site. We are sorry for any inconvenience caused...

Unix/New ssh user

This is a step by step guide for adding new user of Fedora8 and setting up the account for ssh access.

1. Create a new user like so:

[root@myserver]# useradd newusername

Note: sometimes there is a conflict with the path to the command in this case you may see an error message like this

[root@warewolf d3n1S]# useradd blah
bash: useradd: command not found

All you need to do is just supply the full path to the executable. We can locale it by using the find command like so:

       [root@myserver]# find / -iname useradd
        /usr/sbin/useradd
        /etc/default/useradd

and then you can just call it dorectly like so:

[root@myserver]# /usr/sbin/useradd newusername

At this stage we have created a new user account which is blocked.

2. Setup password using the passwd command:

     [root@myserver]# passwd newusername
      Changing password for user newusername.
      New UNIX password:
      Retype new UNIX password:
      passwd: all authentication tokens updated successfully.

At the point where is prompt to type new and retype you need to enter a valid password.

3. Unless you have disabled the SSH you should now be able to login

If for some reason you cannot login through SSH, it is probably because it is disabled in the config.

Points to note:

NEVER copy and paste any command from the blogs/tutorials unless you have run man on it and made sure it does exactly what the article suggestes.

ALWAYS select a strong password - should be more than 10 characters and containing diifferent case letters, numbers and some special characters like $()@ and so on. Usually you can just think of a rememrable word and then replace some of the characters with numbers or other symbols that look alike. E.g. 0 for o, 4 for h, 3 for E and so on.

GOOD PRACTICE not to have name for logins - add some numbers to it at least (same technique as for passwords), this will make it even harded to match

GOOD PRACTICE disable the root login (and any other system account logins, such as oracle, www, apache, mysql, etc.). Here is how you can do that.

GOOD PRACTICE consult the logs for recent attack attempts, like so:

        [root@myserver]# lastb | awk '{print $1}' | sort | uniq -c | sort -rn | head -5
   7220 root
             450 oracle
             430 test
             262 admin
             176 guest

Эта страница была обновлена: 22/04/2011 08:43

Новости

RSS

ATOM

Ware.Wolf - Projects - www.inspire-software.com
03/12/2010 15:14

Web+ - Projects - www.inspire-software.com
03/12/2010 14:58

Открытие Вэб-сайта - www.inspire-software.com
08/09/2009 21:10