Linux | Server Hardening

Disable password-based authentication ( PasswordAuthentication no ) in favor of SSH key-pair authentication .

Prevent direct root access by setting PermitRootLogin no in /etc/ssh/sshd_config . Linux Server Hardening

Follow the principle of least privilege to limit what users and services can do. Linux Server Hardening