User Tools

Site Tools


distros:ubuntu_server

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision
Previous revision
Both sides next revision
distros:ubuntu_server [2020/06/12 02:35]
Sean Rhone
distros:ubuntu_server [2020/06/12 03:03] (current)
Sean Rhone [OpenSSH]
Line 2: Line 2:
  
   * Ubuntu Server ((http://www.ubuntu.com/server))   * Ubuntu Server ((http://www.ubuntu.com/server))
-  * 18.04.3 LTS+  * 20.04 LTS
  
 ====== Known Issues ====== ====== Known Issues ======
Line 15: Line 15:
 ====== Installation Notes ====== ====== Installation Notes ======
  
-  * :!: Either use the Alternate or Network installer images to avoid cloud-init stuff 
   * During installation, allow network autoconfig to occur, and then go back once prompted for a hostname; this will allow setting a static IPv4 address and custom DNS settings   * During installation, allow network autoconfig to occur, and then go back once prompted for a hostname; this will allow setting a static IPv4 address and custom DNS settings
  
Line 49: Line 48:
  
 ===== General ===== ===== General =====
 +
 +==== Bare-metal ====
  
 **** ****
Line 63: Line 64:
 ====== Settings ====== ====== Settings ======
  
-===== Secure Shell ===== +===== OpenSSH =====
- +
-  * See [[Clients:Secure Shell]] +
- +
-==== Force Public Key Authentication ==== +
- +
-  * :!: Be sure to generate/restore keys and to copy to server before disabling passwords +
-  * :!: See [[clients:secure_shell|Secure Shell]] notes +
- +
-  echo 'PasswordAuthentication no' | sudo tee '/etc/ssh/ssh_config.d/custom-pubkey-only.conf' > '/dev/null' && cat '/etc/ssh/ssh_config.d/custom-pubkey-only.conf'+
  
-  sudo -e '/etc/ssh/ssh_config.d/custom-pubkey-only.conf'+  * See [[clients:secure_shell|Client]] notes to generate/restore public key 
 +  * See [[servers:secure_shell|Server]] notes to force public key auth and to further secure the OpenSSH server
  
 ===== Sensors ===== ===== Sensors =====
Line 93: Line 86:
  
   * Allows SSH   * Allows SSH
-  * Limits SSH connections+  * :!: Does not limit SSH ((this caused issues; better to just secure SSH))
   * See [[notes:ufw|ufw]] for more notes   * See [[notes:ufw|ufw]] for more notes
  
-  sudo ufw reset && sudo ufw default deny && sudo ufw logging off && sudo ufw allow 'ssh' && sudo ufw limit 'ssh' && sudo ufw enable && sudo systemctl enable 'ufw'+  sudo ufw reset && sudo ufw default deny && sudo ufw logging off && sudo ufw allow 'ssh' && sudo ufw enable && sudo systemctl enable 'ufw'
  
 ====== Automatic Updates ====== ====== Automatic Updates ======
distros/ubuntu_server.1591943720.txt.gz · Last modified: 2020/06/12 02:35 by Sean Rhone