ok heres the last part of my extreamly awesome post of doom
for this post we are going to edit /etc/passwd
what Your /etc/passwd file does is tell your server what users exist on your server, what groups they are in, and what stuff they are to have access to when they log in.
ok now In order to seal up yet another tiny but deadly security hole, we're just goign to make sure that only the people you select can login to ssh. so Open up your /etc/passwd in your text editor.
every line in the file will look like this
Code:
root:x:0:0:root:/root:/bin/bash
if you see a line with :: in it anywhere make sure you force that user to put a password on their account
anyways This tells the server some info such as the userid, the groupid, and so forth
In this case, root gets /bin/bash.
Any user account you want to be able to login, should end with /bin/bash
Any other account should get /sbin/nologin.
there ya go your server is more secure :D
omg a bannana >> :dancing: