SSH
What is this about?
Upping your security game through better web security
You can’t drop a bastion in your network setup to proxy all your SSH connections and blacklist all but that IP to connect to your servers? Can’t pipe all of your servers to your local PKI/Radius to check on the validity of the certificate used to connect and have to do it manually? Well, the least you can do is follow these steps then!
Also, anyone up for some SSH through Avian carriers?
Your jokes are bad and you should feel bad
Alright, alright, here are the goods
SSH configuration
I’m not a copy, pasta & relabel artist so just go here for all the info you need
https://infosec.mozilla.org/guidelines/openssh
Testing your configuration
Either go here for the original version (but the author is MIA)
https://github.com/arthepsy/ssh-audit
Or go for one of the active branches like his one