element14 Community
element14 Community
    Register Log In
  • Site
  • Search
  • Log In Register
  • About Us
  • Community Hub
    Community Hub
    • What's New on element14
    • Feedback and Support
    • Benefits of Membership
    • Personal Blogs
    • Members Area
    • Achievement Levels
  • Learn
    Learn
    • Ask an Expert
    • eBooks
    • element14 presents
    • Learning Center
    • Tech Spotlight
    • STEM Academy
    • Webinars, Training and Events
    • Learning Groups
  • Technologies
    Technologies
    • 3D Printing
    • FPGA
    • Industrial Automation
    • Internet of Things
    • Power & Energy
    • Sensors
    • Technology Groups
  • Challenges & Projects
    Challenges & Projects
    • Design Challenges
    • element14 presents Projects
    • Project14
    • Arduino Projects
    • Raspberry Pi Projects
    • Project Groups
  • Products
    Products
    • Arduino
    • Avnet Boards Community
    • Dev Tools
    • Manufacturers
    • Multicomp Pro
    • Product Groups
    • Raspberry Pi
    • RoadTests & Reviews
  • Store
    Store
    • Visit Your Store
    • Choose another store...
      • Europe
      •  Austria (German)
      •  Belgium (Dutch, French)
      •  Bulgaria (Bulgarian)
      •  Czech Republic (Czech)
      •  Denmark (Danish)
      •  Estonia (Estonian)
      •  Finland (Finnish)
      •  France (French)
      •  Germany (German)
      •  Hungary (Hungarian)
      •  Ireland
      •  Israel
      •  Italy (Italian)
      •  Latvia (Latvian)
      •  
      •  Lithuania (Lithuanian)
      •  Netherlands (Dutch)
      •  Norway (Norwegian)
      •  Poland (Polish)
      •  Portugal (Portuguese)
      •  Romania (Romanian)
      •  Russia (Russian)
      •  Slovakia (Slovak)
      •  Slovenia (Slovenian)
      •  Spain (Spanish)
      •  Sweden (Swedish)
      •  Switzerland(German, French)
      •  Turkey (Turkish)
      •  United Kingdom
      • Asia Pacific
      •  Australia
      •  China
      •  Hong Kong
      •  India
      •  Korea (Korean)
      •  Malaysia
      •  New Zealand
      •  Philippines
      •  Singapore
      •  Taiwan
      •  Thailand (Thai)
      • Americas
      •  Brazil (Portuguese)
      •  Canada
      •  Mexico (Spanish)
      •  United States
      Can't find the country/region you're looking for? Visit our export site or find a local distributor.
  • Translate
  • Profile
  • Settings
sudo Sergeant
  • Challenges & Projects
  • element14 presents
  • sudo Sergeant
  • More
  • Cancel
sudo Sergeant
Documents sudo Sergeant 19: Hardening the Secure Shell
  • Documents
  • Polls
  • Files
  • Members
  • Mentions
  • Sub-Groups
  • Tags
  • More
  • Cancel
  • New
Join sudo Sergeant to participate - click to join for free!
Actions
  • Share
  • More
  • Cancel
Engagement
  • Author Author: tariq.ahmad
  • Date Created: 29 May 2018 5:49 PM Date Created
  • Last Updated Last Updated: 13 Aug 2018 11:01 PM
  • Views 1166 views
  • Likes 4 likes
  • Comments 3 comments
Related
Recommended

sudo Sergeant 19: Hardening the Secure Shell

image

element14's The Ben Heck Show

Join the Ben Heck team every week for amazing hacks! Watch them build and mod community-inspired projects using electronics!

Back to The Ben Heck Show homepage image

sudo Sergeant
The Learning Circuit
See All Episodes

 

You don't have permission to edit metadata of this video.
Edit media
x
image
Upload Preview
image

Felix goes over some basic and essential security configurations for the Raspberry Pi.  He does this for the Raspbian install, however, what he shows you can be applicable to other single board computers or distributions with slight modifications.  Modifying the security settings of the Raspberry Pi will allow you to connect to the network more securely. 

 

Felix goes over modifying the sudoers file.  This file manages how sudo is invoked and what groups or accounts are bestowed with the privileges of sudo.  A secure practice is to require an account with sudo privileges to supply a password when calling any program with sudo.  Some system administrators like to require anyone logged into the account to also know the root password.  The only thing Felix is requiring is for the person to know the passphrase for the account in the sudo group.

 

He also shows you how to create a new key pair.  A key pair consists of a public and a private key.  He starts by issuing a key gen instruction via SSH.  He then shows you how to install and setup fail2ban.  Fail2ban is a service that can track failed attemps to the SSH port and if an IP address fails repeatedly, the IP address can be blocked for a period of time, or indefinitely.  In the comments below let us know if there is anything related to security that you would like us to go into more detail about.

  • tft screen
  • security
  • ip address
  • sudoers
  • ssh
  • system administration
  • key pair
  • fail2ban
  • raspbian
  • sudosergeant
  • linux
  • Share
  • History
  • More
  • Cancel
  • Sign in to reply
  • mp2100
    mp2100 over 7 years ago

    Is there any chance we could get a transcript of this video?  I know Felix moves fast to keep the video interesting.  But, even with the closed caption on the commands entered scroll off the screen before I can see what's typed.

     

    (some of the translations are rather funny.  Felix says "the sudoers file" and the caption says "this odorous file" image),

    • Cancel
    • Vote Up 0 Vote Down
    • Sign in to reply
    • More
    • Cancel
  • mp2100
    mp2100 over 7 years ago

    All this great info crammed into a short video.  I’ve been trying to collect what was covered from various sites (stackexchange, raspberry pi forums, instructables), and there are little nuggets of helpful information at each place.  Or, I can watch here for exactly what I wanted to know. 

     

    Where’s the slo-mo button, so I can write it all down?

    • Cancel
    • Vote Up 0 Vote Down
    • Sign in to reply
    • More
    • Cancel
  • airbornesurfer
    airbornesurfer over 7 years ago

    Great walkthrough, Felix!

    • Cancel
    • Vote Up 0 Vote Down
    • Sign in to reply
    • More
    • Cancel
element14 Community

element14 is the first online community specifically for engineers. Connect with your peers and get expert answers to your questions.

  • Members
  • Learn
  • Technologies
  • Challenges & Projects
  • Products
  • Store
  • About Us
  • Feedback & Support
  • FAQs
  • Terms of Use
  • Privacy Policy
  • Legal and Copyright Notices
  • Sitemap
  • Cookies

An Avnet Company © 2025 Premier Farnell Limited. All Rights Reserved.

Premier Farnell Ltd, registered in England and Wales (no 00876412), registered office: Farnell House, Forge Lane, Leeds LS12 2NE.

ICP 备案号 10220084.

Follow element14

  • X
  • Facebook
  • linkedin
  • YouTube