Go to main content

Oracle® SuperCluster M8 and SuperCluster M7 Security Guide

Exit Print View

Updated: June 2020
 
 

Configure the Secure Shell Service

Performing this task helps improve the Secure Shell security configuration deployed in the Oracle SuperCluster.

The /etc/ssh/sshd_config file is a system-wide configuration file where you configure parameters for the Secure Shell service.

  1. Log in to one of the compute servers and access the host console as superuser.

    See Log into a Compute Server.

  2. Edit the /etc/ssh/sshd_config file.
  3. Review other sshd_config parameters and set them according to site requirements.

    These settings secure the Secure Shell service:

    Protocol 2
Banner /etc/issue
PermitEmptyPasswords no
PermitRootLogin no
StrictModes yes
IgnoreRhosts yes
PrintLastLog yes
X11Forwarding no
ClientAliveInterval 600
ClientAliveCountMax 0
  4. Save the sshd_config file.
  5. Restart the service.

    You must restart the service for the changes to take effect.

    # svcadm restart ssh
Copyright © 2020, Oracle and/or its affiliates.  
Previous
Next