Secure Ubuntu server for non-root user using only SSH keys

PublishedJuly 20, 2021

•1 min read

Secure Ubuntu server for non-root user using only SSH keys

I will raise your revenues or decrease your costs using solutions based on logic and in most cases, it will involve a computer. Design - Build - Improve.

I design solutions to your business problem, build it with you and your team and finally scale the solution to fix other related problems.

I use Javascript and Python as the main languages for development but I am eager and faster to learn anything that would be put a solution on the table.

Part of seriesQuick Bits

Here are the set of commands that you need to run as root on a new digital ocean droplet (assuming you have already setup root to have ssh access). This will setup mynewuser with passwordless sudo rights and the ability to ssh into the machine without a password (using only your ssh-key)

adduser --system --group mynewuser

mkdir /home/mynewuser/.ssh

chmod 0700 /home/mynewuser/.ssh/

cp -Rfv /root/.ssh /home/mynewuser/

chown -Rfv mynewuser.mynewuser /home/mynewuser/.ssh

chown -R mynewuser:mynewuser /home/mynewuser/

gpasswd -a mynewuser sudo

echo "mynewuser ALL=(ALL) NOPASSWD: ALL" | (EDITOR="tee -a" visudo)

service ssh restart

usermod -s /bin/bash mynewuser

Reference

#devops #ssh

Comments

Join the discussion

No comments yet. Be the first to comment.

Quick Bits

Part 10 of 12

This series include short articles and tutorials. The purpose of these articles is to help you quickly solve an issue or learn an easy concept.

Up next

Fix git not updating remote from remote on fetch

You have cloned a repo maybe using shallow clone with git clone --depth <depth> <repo> implies --single-branch, But strangely when you are trying to fetch from remote, it's not working. To fix a local repo that's not fetching try: or git config rem...

More from this blog

Export realm settings with Keycloak in Docker

when exporting realm through Docker the following error happens: I get the following error message: ERROR: Error during export/import: /opt/keycloak/data/import/your-realm.json (Permission denied) To resolve this, run the command using the root prov...

Sep 9, 20241 min read

Installing Android SDK Without Android Studio

💡 Copied from https://benshapi.ro/post/android-sdk-without-android-studio/ for personal Backup The process is similar on macOS, Windows, and Linux. Here are the key steps: Install Java 17. Make sure to select version 17. You’ll have issues if y...

Jul 24, 20243 min read

How to Migrate from Material-UI 4 to 5

In this article I’ll share with you my own experience in migration from material UI 4 to 5, it is so easy, such as drinking a cup of coffee. Ok, let's go first of all, you need to upgrade your React js version at least to v17.0.0 (mine is v17.0.2), a...

Feb 15, 20242 min read

Fix: Error: <class ‘PermissionError’>, [Errno 13] Permission denied: file: /usr/lib/python3/dist-packages/supervisor/xmlrpc.py line: 560

Step 1 chmod -R o+rx /home/[frappe_user] Step 2: sudo nano /etc/supervisor/supervisord.conf (Add these lines under [unix_http_server]) chmod=0760 chown=frappe:frappe Step 3: Restart supervisor sudo -A systemctl restart supervisor

Feb 21, 20231 min read

DNS Multitenant on Frappe bench

Here is the process I use when setting up Multi-Tenant DNS on frappe bench` bench config dns_multitenant on bench new-site library.dev bench setup nginx sudo service nginx reload bench --site library.dev install-app library-management Repeat st...

Jan 10, 20231 min read

Victor Abz

12 posts

Hello, I am Victor. I am a software engineer with corporate experience. Solution provider for #startups and #enterprise using Javascript (Node JS and React) | Python.

Command Palette

Comments

Quick Bits

Fix git not updating remote from remote on fetch

More from this blog