Difference between revisions of "Configure System Services"
(Created page with "== Installing Gentoo - Configure System Services == Now that we've installed all of our system utilities, we need to schedule them to start with the system. ---- '''Optional …") |
|||
| Line 6: | Line 6: | ||
---- | ---- | ||
'''Optional - Change your ssh port''' | '''Optional - Change your ssh port''' | ||
| + | |||
The default port for ssh connections is 22. Much like with FTP servers configured to use the default port (21), people program bots to find an ssh server listening on the default port and then hammer it, using a password dictionary, to try to guess the root password. Changing the port to something other than the default is a very easy way to deter 99% of such attacks. | The default port for ssh connections is 22. Much like with FTP servers configured to use the default port (21), people program bots to find an ssh server listening on the default port and then hammer it, using a password dictionary, to try to guess the root password. Changing the port to something other than the default is a very easy way to deter 99% of such attacks. | ||
Revision as of 20:47, 17 November 2010
Installing Gentoo - Configure System Services
Now that we've installed all of our system utilities, we need to schedule them to start with the system.
Optional - Change your ssh port
The default port for ssh connections is 22. Much like with FTP servers configured to use the default port (21), people program bots to find an ssh server listening on the default port and then hammer it, using a password dictionary, to try to guess the root password. Changing the port to something other than the default is a very easy way to deter 99% of such attacks.
The ssh port setting is stored in the file /etc/ssh/sshd_config. Find the line containing the directive Port, uncomment it, and replace yourport in the example below with your desired port.
# nano -w /etc/ssh/sshd_config
file: /etc/sshd/sshd_config
... Port yourport
Start networking with the system.
# rc-update add net.eth0 default
Enable numlock at startup.
# rc-update add numlock default
Start the ssh daemon, so you can connect remotely to your computer.
# rc-update add sshd default
Start the system logger, so you can view system logs for security and troubleshooting purposes.
# rc-update add syslog-ng default
Start the cron deamon, so scheduled tasks are run when invoked.
# rc-update add vixie-cron default
Start the ntp daemon, ensuring your system time remains in sync.
# rc-update add ntpd default