It is the command line interface for libvirt/qemu/kvm on Linux. I usually just use virt-manager remotely via SSH to create and manage my VMs, but virsh can be handy as well.
Gerowen
- 0 Posts
- 3 Comments
Joined 2 years ago
Cake day: June 14th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
1·3 months agoI generally do a few things to protect SSH:
- Disable password login and use keys only
- Install and configure Fail2Ban
- Disable root login via ssh altogether. Just change “permit root login” from “no password” to just “no”. You can still become root via sudo or su after you’re connected, but that would trigger an additional password request. I always connect as a normal user and then use sudo if/when I need it. I don’t include NOPASSWD in my sudoers to make certain sudo prompts for a password. Doesn’t do any good to force normal user login if sudo doesn’t require a password.
- If connecting via the same network or IPs, restrict the SSH open port to only the IPs you trust.
- I don’t have SSH internet visible. I have my own Wireguard server running on a separate raspberry pi and use that to access SSH when I’m away, but SSH itself is not open to the internet or forwarded in the router.
You can’t survive around here (eastern Kentucky) without owning your own car. The nearest Walmart to me is a half hour drive at 60mph and we don’t have taxis in any of the towns around me. That’s 7 hours of walking, each way. No buses or trains either. The closest store of any kind to me is a Dollar General and is about 2 hours each way if I walk.