Supports SSH keys?

[Awalsh]

Hi,

Ive just got around to "securing" ssh on my VPS, I currently have password logins disabled and only accept public keys (as well as only allowing certain users and IP's to login). I was just thinking, what when I need to contact support? They usually ask me for my root password etc, since password logins are disabled on my VPS. Would it be possible to just install supports public keys or would I just be better enabling password logins as and when i contact support?

Just after some tips on SSH security as I am sick and tired of receiving emails from BFD about 1000 failed login attempts to SSH.

Any tips would be useful.

Andrew

[JPC-Masood]

For VPS: Support does not need root password to login via ssh but for control panel access.

[thisisit3]

Tips? sure,

just change the listening port of SSHD to some high value like 21432, then all those failed logins will disappear

key authentication is a MUST HAVE, so keep it enabled and disable password access.

[Awalsh]

So let me get this straight, just giving support control panel access details is enough in most cases? Sounds unusual as when I've contacted support in the past 9 times out of 10 they have required my root login details. Or do support have other ways to access the VPS?

Andrew

[thisisit3]

just so you know, a VPS can be operated with root access directly by the virtualization software, so there is no need for your root password to access files on the server. As Masood already mentioned, its used for accessing the control panel.

[Gwaihir]

IIRC, if you have root access to the node, you can move freely into any VPS, no password required.

[Awalsh]

Thanks for clearing that up for me, never knew about this. Just looking through my closed tickets got me thinking about supports need for access to my VPS (asking for details etc). But now thats sorted I can secure SSH more