Which of the following lines in the sshd configuration file should, if present, be changed in order to increase the security of the server? (Choose two.)
Which of the following lines in the sshd configuration file should, if present, be changed in order to increase the security of the server? (Choose two.)
To increase the security of the server, you should change these lines in the sshd configuration file if they are present: 'Protocol 2, 1' and 'PermitRootLogin yes'. The line 'Protocol 2, 1' allows the use of SSH protocol version 1, which is known to have security vulnerabilities; it should be set to 'Protocol 2' to only use the more secure version. The line 'PermitRootLogin yes' allows the root user to log in directly, which poses a significant security risk; it should be changed to 'PermitRootLogin no' to require users to log in as a regular user and then switch to root using sudo or su.
A , D it's right
AB is correct, i am pretty sure....
No.. PermitEmptyPassword no sholdn't be changed. The question asks "if present, must be changed". If you want to make it secure, you must have that option set as NO. This answer is corret. B and D
I agree with you according to the man pages
B. PermitEmptyPasswords no - This line ensures that empty passwords are not permitted, which is important for security as it prevents users from having blank passwords. D. PermitRootLogin yes - This line allows root login directly, which is generally considered a security risk. Changing it to "no" would disallow direct root login, requiring users to log in as a regular user and then switch to root using sudo or su, which is a more secure practice. So, the correct options are B and D.
I think A and D are correct. The question asks for which lines SHOULD be changed; A enables SSH v1 which by default is disabled, and PermitRootLogin is by default set to prohibit-password and this lines allows it instead.