March 20, 20215 yr Very much appreciate I can secure my unRaid now w/traditional passwords. I request that if the boot-flash contains an authorized_keys file preloaded with SSH public keys, that this file is used for SSH based login and SSHD config is appended with: PasswordAuthentication no This would further harden root SSH access and effectively secure this entry point from any brute force attacks, likely internally from another compromised machine.. If desired web access can already be hardened w/client based tokens via firewalls and a reverse proxy, but that would be pretty cool it supported like a 2FA app for web auth since you can gain a root shell via web-ui. Edited March 20, 20215 yr by nayr
Archived
This topic is now archived and is closed to further replies.