Choosing a Smart Root Password

Root Passwords are the worst ever to have compromised. Once the root password is figured out there is no way of telling the extent of the damage that could occur from an attacker.Don’t hand over the keys to the kingdom ever if it can be prevened

Over the years we have learned a few techniques that should help from having your password compromised

 

  1. only allow necessary ports (for example on a web server only allow port 80) Never use 1 to 1 NAT unless you can’t help it
  2. Be behind a secure firewall (must have recent firmware less than a year old)
  3. Do not expose port 21/22 to the internet directly, use a redirected port
  4. Never use 777 permission (755 is the highest you would ever want to go)
  5. Use Complex Password (8 digits or more, one Special character, and numbers)
  6. don’t use words in your password ex: Igr@duated2007 would be a bad password
  7. use a random password generator to get a long, complex password that should stop outsiders , google“random password generator”
  8. to change your present root password, log in as root, and type the “passwd” command, it will then prompt you for your new random generated password
  9. Store password in a password safe that has all complex passwords, and is password protected. (if your password is not secure there is no reason to have a complex password)

That’s it! These are Linux security tips brought to you by Zwiegnet Linux Hosting

Leave a Reply