From 88aa25d7bf8a2f033ed97254a3d2293b41f7be4a Mon Sep 17 00:00:00 2001
From: thek4n <djvlad967891@gmail.com>
Date: Sun, 31 Oct 2021 19:44:41 +0300
Subject: [PATCH] doc: sshd

---
 doc/ssh.md | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/doc/ssh.md b/doc/ssh.md
index e69de29..125bb4b 100644
--- a/doc/ssh.md
+++ b/doc/ssh.md
@@ -0,0 +1,28 @@
+`/etc/ssh/sshd_config`
+* Adding public key to remote machine :\
+     * ```ssh remotehost "umask 077; cat > .ssh/authorized_keys" < .ssh/id_rsa_backup.pub```
+     
+
+* Access for VPS:
+     * ```
+       PubkeyAuthentication yes
+       
+       PasswordAuthentication no
+       Match User root
+           PasswordAuthentication yes
+       ```
+
+* For local server:
+    * ```
+      PubkeyAuthentication yes  # only ssh-key
+      
+      PermitRootLogin no  # only sudo and su
+      Match Host 192.168.5.*,127.0.0.1
+          PermitRootLogin yes  # root only local
+      
+      PasswordAuthentication no
+      Match User root
+          PasswordAuthentication yes  # root auth only password from local
+      ```
+
+https://www.opennet.ru/base/sec/ssh_tips.txt.html
\ No newline at end of file