rm
can wipe your entire server if run incorrectly using by a root user.su
or sudo
, always.su
or sudo
)sudo
for users so commands are logged/etc/ssh/sshd_config file
-p <port#>
flag if you used a custom SSH port.$HOME/.ssh/config
file:ssh ethereum-server
rather than needing to pass through all ssh parameters explicitly./etc/pam.d/sshd
file:sshd
daemon using:/etc/ssh/sshd_config
.google_authenticator
file: yes/etc/fstab
ignoreip
parameter accepts IP addresses, IP ranges or DNS hosts that you can specify to be allowed to connect. This is where you want to specify your local machine, local IP range or local domain, separated by spaces.1# Verify status2sudo ufw status numbered3To Action From4-- ------ ----5[ 1] 22/tcp ALLOW IN Anywhere6# SSH7[ 2] 3000/tcp ALLOW IN Anywhere8# Grafana9[ 3] 9000/tcp ALLOW IN Anywhere10# eth2 p2p traffic11[ 4] 9090/tcp ALLOW IN Anywhere12# Prometheus13[ 5] 30303/tcp ALLOW IN Anywhere14# eth1 node15[ 6] 22/tcp (v6) ALLOW IN Anywhere (v6)16# SSH17[ 7] 3000/tcp (v6) ALLOW IN Anywhere (v6)18# Grafana19[ 8] 9000/tcp (v6) ALLOW IN Anywhere (v6)20# eth2 p2p traffic21[ 9] 9090/tcp (v6) ALLOW IN Anywhere (v6)22# Prometheus23[10] 30303/tcp (v6) ALLOW IN Anywhere (v6)24# eth1 nodeCopied!
netstat
shred -u ~/.bash_history && touch ~/.bash_history