Back to all checklists

SecurityIntermediate

SSH Hardening Checklist

Comprehensive guide to harden your SSH server configuration and improve security.

30-45 minutes

12 items

sshsecuritylinuxserverhardening

Progress0 / 12 completed

0%

Disable root login

Critical

Change default SSH port

Enable key-based authentication

Critical

Disable password authentication

Critical

Configure firewall rules

Set up fail2ban

Enable two-factor authentication

Configure SSH key permissions

Set up SSH session timeouts

Disable empty passwords

Critical

Use SSH protocol version 2

Configure allowed users/groups