Hardening an Ubuntu Server

Betterloop · 31 March 2023 09:28

Create a new user called cardano

When I run this command: useradd -m -s /bin/bash cardano

: I get permission denied
: cannot lock /etc/passwd; try again later

What can be the problem?

HeptaSean · 31 March 2023 09:48

You are trying it as a normal user without sudo?

Betterloop · 31 March 2023 09:55

yes, should I write sudo infront?

HeptaSean · 31 March 2023 10:05

Yes, sudo is always in front of the command that needs root privileges.

Betterloop · 31 March 2023 10:23

I cant get this next chapter right, maybe you can help me? I am trying to ( Transfer the public key to your remote node. Update the keyname .)

with this command: sudo ssh-copy-id -i $HOME/.ssh/.pub cardano@server.public.ip.address

I did put my public Ip adress after @ . What more do i have to modify?

HeptaSean · 31 March 2023 10:29

Did you generate a key pair (ssh-keygen) before that?

Also, that command should probably be without sudo, since you want to connect with the ssh key of your user, not with root’s ssh key.

Betterloop · 31 March 2023 10:37

Yes i did that, should i change the keyname in the command as well?

Command: ssh-copy-id -i $HOME/.ssh/.pub cardano@server.public.ip.address

HeptaSean · 31 March 2023 10:43

Usually, it’s $HOME/.ssh/id_rsa.pub.

You do know tab completion? If you are somewhere on the command line, hitting the tabulator key once will complete as far as there already is a unique completion. Twice will give you a selection of possible completions. Ideal to not have to remember exact filenames.

Betterloop · 31 March 2023 10:52

I cant get it working, unfortunatley. dont understand whats wrong.

command: ssh-copy-id -i $HOME/.ssh/id_numbers.pub cardano@IP

HeptaSean · 31 March 2023 10:59

Does it give you any error message?

Betterloop · 31 March 2023 11:03

/usr/bin/ssh-copy-id: ERROR: failed to open ID file ‘/home/betterloop/.ssh/id_number.pub’: No such file

HeptaSean · 31 March 2023 11:12

It pretty clearly tells you that that is not the correct file name.

You can view what is inside that directory with ls $HOME/.ssh/ (or use the tab completion mentioned in one of the previous posts).

Also, if you want to operate a Linux server on the open internet, you probably should learn a bit of Linux. Those guides unfortunately don’t give a lot of context and just let you copy and paste through it.

Maybe, start with https://ubuntu.com/tutorials/command-line-for-beginners. Since we are at it at the moment https://schh.medium.com/ssh-for-dummies-ea168e6ff547. Later, to understand how the cardano-node service is contolled, https://medium.com/geekculture/the-rise-of-linux-systemd-a-beginners-guide-8ca1e226103a will surely help.

And many, many more things that are not really Cardano specific.

Betterloop · 31 March 2023 11:18

thank you. i will study the links

Topic		Replies	Views
Disabling SSH Password Authentication and Using SSH Keys Only Setup a Stake Pool	5	337	1 April 2023
SSH tunnel to Grafana Setup a Stake Pool	1	378	21 May 2023
Hardening sever coincashew, Verify the login still works? Operate a Stake Pool	6	251	12 April 2023
Cardano-node lock: openFd: permission denied Setup a Stake Pool	6	854	1 June 2021
Need Help With Systemd Creation & Port Forwarding Operate a Stake Pool	4	351	27 October 2021

Hardening an Ubuntu Server

Related Topics