Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Practise HW02 #7

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Practise HW02 #7

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
758b717
Check changes
Mar 30, 2019
0955051
HW2 practise changes
Mar 30, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
7 changes: 4 additions & 3 deletions week02/hw/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,7 @@
- Select the blue "Order Devices" button at the top right
- Select "Virtual Server" from the list, then "Public Virtual Server"
- Accept the default for Quantity (1) and Billing (Hourly)
- Choose a hostname and domain. You can literally use any domain name you choose, it will not be registered in DNS
- Choose a hostname and domain. You can literally use any domain name you choose, it will not be registered in DNS. The host name is the given to the endpoint (or the machine itself), while the domain is the name given to the network. It is written as `hostname.domain.com`.
- Choose a location near you
- Select the Compute C1.1x1 profile (1 CPU, 1GB of RAM)
- Select your SSH Key from the dropdown list
Expand All @@ -28,14 +28,14 @@
- Navigate to https://cloud.ibm.com/classic/devices to monitor your VM creation

## Harden the VSI, ensure ssh still works with the key
- SSH into the VSI using your SSH Key and the `root` ID
- SSH into the VSI using your SSH Key and the `root` ID. Here you use the public IP seen on the Virtual Machine on Softlayer, for example `ssh [email protected]`. It may take a minute for the server to power up before you can SSH in.
- Edit /etc/ssh/sshd_config and make the following changes to prevent brute force attacks

```
PermitRootLogin prohibit-password
PasswordAuthentication no
```
- Restart the ssh daemon: `service sshd restart`
- Restart the ssh daemon: `service sshd restart`. On MacOS this command was not available so you can try the commands seen here http://vivo.pub/2409
- Ensure that you can only login with a ssh key and that password authentication is properly disabled:

```
Expand All @@ -51,6 +51,7 @@ Copy and paste the following command to a terminal of your Linux OS and run it:
```
curl -fsSL https://clis.ng.bluemix.net/install/linux | sh
```
For Windows or Mac, and installer is needed. Search in a browser for 'Install IBM Cloud CLI on the VSI', and you will get to the installers in Bluemix.

Log into IBM Cloud using `ibmcloud login`

Expand Down