Securing your Raspberry: protect the SSH remote access by SSH port change

-
By default, the remote access to computers via SSH works via communication on port 22, and that's the port where any intrusion attempt will start from . To prevent that, you should change that port to another number. Almost any other port between 1 and 65535 will work, but some of the lower ones (under 1000) might get used by the system for other purposes. So, pick any number above 1000. Let's say we'll pick port number 27732.

First, let's change that port number in the Raspi. SSH into your Pi and modify the SSH settings file with 27732 in the line that reads "#Port22":
Hit ^X and Enter to commit the changes, reboot. The SSH connection will drop, and to restart the connection you will need to modify the session settings in MobaXTerm with that same port number 27732:
Hit OK. Your terminal window should come up again, now connected to the Raspi via that new port number 27732.
Done. Your Raspi is now slightly more hardened against the simple intrusion attempt via standard port 22.

Comments

Post a Comment

Popular posts from this blog

Accessing a NAS drive from your Raspberry Pi

-
Image
Often enough, you will need much more storage space than is available on your Raspberry's SD Card. With a few setup files in the Raspbian OS, writing to and reading from a NAS drive in your home network is possible. The following works for Raspbian Stretch. It is a bit finnicky to set up, and very parameter dependent, so it may or may not work for other Raspbian versions. When finished, you will have a new folder (here, named as 'WDMyCloud') in your Raspberry's directory structure. It will behave like a local folder on the Raspi's SD card, but it is actually a folder on the NAS drive. Step 1: Create a folder on the Pi that you will later mount the NAS share in. That folder needs to be somewhere in the home/pi structure. I have put that folder in the /home/pi/ directory and simply named it after my NAS which, you guessed it, is a WDMyCloud device. In a Raspberry terminal window, create that folder with the following commands: cd /home/pi  sudo mkdir DRIVE...
Read more

Why yet another Raspberry Pi blog?

-
There's tons of excellent blogs, YouTube videos, websites and other stuff out there, on absolutely everything you can do with a Raspi. Written by people who are light years ahead of me in programming, networking, Linux wizardry, electronics etcetera. So what am I trying to accomplish here? What value could I possibly add to that tremendous intelligence that is already freely available? Here's what. If you're like me, you have become interested in just playing with these wonderful little things and want to know how they work, and what you could do with them. They are a solution looking for a problem. So you are looking around your house, thinking: "What on earth could I possibly automate around here?" So you contemplate building a surveillance camera system. Or a smart energy meter. Or a weather station. Or automating your aquarium. Whatever. In my case, i thought I'd start with adding some cheap temperature and humidity sensors, and if that works, I coul...
Read more

Remotely control your Raspberry Pi Zero W from your Windows computer with SSH

-
Image
So you've got your Raspberry Pi Zero W all set up, with Raspbian Stretch installed and working, and you've got a keyboard plugged into it. And you can see and operate the Raspi's GUI via the screen that you have plugged into the Raspi's HDMI port. Good! I like to remove screens, cables and stuff from my desk as much as possible. And I want to put the Raspi into a little box anyway, for some home automation purposes, and that box will be meters away from my office desk. Luckily, the Raspberry Pis allow to be completely remote control with a Windows computer via 'SSH' networking. The following is my recipe to set up SSH remote control on your Raspberry and your Windows computer. Step 1: by default, SSH is disabled on a brand new Raspi. We need to enable SSH. From the GUI, select Preferences-Raspberry Pi Configuration: In the Configuration window, enable 'SSH': Reboot the Raspi to start the SSH functionality. Done. The Raspi is now ready to be ...
Read more