hoborg/homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
059daa77aa4474307552ca69c3a839c1323c2370
homelab/config/ssh/sshd_config_hardening
Arpad Krejczinger 5e714f4e45 Add SSH hardening and kernel security configurations 
- config/ssh/sshd_config_hardening: Enhanced SSH security settings
- config/ssh/banner: Legal warning banner for SSH connections
- config/sysctl/99-security.conf: Kernel network and memory protection parameters
- Includes deployment instructions for system-level hardening
2025-09-12 20:38:21 +02:00

22 lines
533 B
Plaintext
Raw Blame History

# SSH Hardening Configuration
# Deploy by appending to: /etc/ssh/sshd_config
#
# Setup commands:
# sudo cp /etc/ssh/sshd_config /etc/ssh/sshd_config.backup
# sudo cat config/ssh/sshd_config_hardening >> /etc/ssh/sshd_config
# sudo sshd -t
# sudo systemctl restart sshd
# Enhanced security settings
ClientAliveInterval 300
ClientAliveCountMax 2
Compression no
LogLevel VERBOSE
MaxSessions 3
TCPKeepAlive no
X11Forwarding no
AllowAgentForwarding no
AllowTcpForwarding no
GatewayPorts no
PermitTunnel no
Banner /etc/ssh/banner
Reference in New Issue View Git Blame Copy Permalink