mico/systems-guide
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Some pronounced warning

Browse Source
This commit is contained in:
mic0 2025-11-18 14:49:09 +01:00
parent 6cfae9993b
commit de8c29591b
No known key found for this signature in database
GPG Key ID: BE627E39EE3FE70C
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
setup.md
View File

@ -34,6 +34,9 @@ firewall-cmd --add-service=ssh --permanent &&
firewall-cmd --reload
```
⚠️⚠️⚠️ `drop` zone will just drop all traffic if you dont configure it to use `public` zone like we show in [Firewall](firewall.md) section. If connections time out this is likely the reason. ⚠️⚠️⚠️
## Unattended upgrades
```sh
@ -87,10 +90,11 @@ nvim .ssh/authorized_keys # paste relevant SSH public keys in here
```
Try opening a new terminal and ssh-ing into `admin` user on the server, it should work.
Be sure this is the case before you lock `root` account out.
### Locking the `root` account
⚠️⚠️⚠️ Be sure you can SSH with another sudo enabled account like `admin` otherwise you WILL LOCK YOURSELF out of the machine. ⚠️⚠️⚠️
Go back to `root` account now, otherwise you will need to `sudo` the commands below.
The following commands will lock out the root by configuring `/etc/ssh/sshd_config` file.