[HowTo] 1.1 | Connect to the server

To connect to your server, you need an SSH client. If you are on linux/mac, you just have to open a terminal and type

#ssh root@ksXXXXXX.kimsufi.com

If you are on windows, I recomend to download the software Putty. Then type ksXXXXXX.kimsufi.com as server name, and 22 as port. Then click connection.

Type the password OVH gave you in the email that confirmed your server was ready.

Prevent log in as root

The first thing to do is to create another user, cause you'll easily understand the security problem if you're in root all the time... In fact, I'm often as root, but right now I just want to prevent connection as root. I think the right thing is to connect as a powerless user, and then switch as root. In order that a potential hacker will have to know 2 passwords to control your machine. I decided to name my user « roots » So:

#mkdir /home/roots
#useradd -d /home/roots -s /bin/sh roots
#passwd roots

Then, let's prevent ssh connection for root:

#vi /etc/ssh/sshd_config

And find the line where you have « PermitRootLogin yes » and turn the yes in a no. Exit the text editor. And restart the service

#/etc/init.d/ssh restart

Right. Now just test if it works. Open a new terminal (or a new Putty window) and try to connect as root. The server might tell you the connection is refused. That's normal, we disabled it ;-) Now try to connect as roots. It should work. Then, just switch the user with the su command (Switch User):

#su root

or just

#su

And you're done. Before, the hacker just had to find the root password (with a bruteforce attack for example). Now, a potential hacker will have to find the name of the « proxy user to get root », his password, and then the root password. We have already increased our server security.

Now, let's go to chapter two: customize the shell