Secure Ubuntu server for non-root user using only SSH keys

Secure Ubuntu server for non-root user using only SSH keys

Here are the set of commands that you need to run as root on a new digital ocean droplet (assuming you have already setup root to have ssh access). This will setup mynewuser with passwordless sudo rights and the ability to ssh into the machine without a password (using only your ssh-key)

adduser --system --group mynewuser

mkdir /home/mynewuser/.ssh

chmod 0700 /home/mynewuser/.ssh/

cp -Rfv /root/.ssh /home/mynewuser/

chown -Rfv mynewuser.mynewuser /home/mynewuser/.ssh

chown -R mynewuser:mynewuser /home/mynewuser/

gpasswd -a mynewuser sudo

echo "mynewuser ALL=(ALL) NOPASSWD: ALL" | (EDITOR="tee -a" visudo)

service ssh restart

usermod -s /bin/bash mynewuser

Reference

 
Share this