🚫 Disable Root Login (Safely)

Disabling root login over SSH is a great way to improve your server’s security — but you must do it after you’ve set up a non-root user with SSH key access.

This guide helps you safely disable root SSH login without locking yourself out.

Step 1: Ensure You Have a Non-Root User

bash

adduser astro

Add the user to the sudo group:

bash

usermod -aG sudo astro

⚠️ This user will now have admin privileges using sudo.

Step 2: Copy Your SSH Key to the New User

Assuming your SSH public key is already on the server (from your earlier setup), copy it to the new user:

bash

rsync --archive --chown=astro:astro ~/.ssh /home/astro

Or manually:

bash

mkdir /home/astro/.ssh
cp ~/.ssh/authorized_keys /home/astro/.ssh/
chown -R astro:astro /home/astro/.ssh
chmod 700 /home/astro/.ssh
chmod 600 /home/astro/.ssh/authorized_keys

Before making any changes, open a new terminal window and try logging in as the new user:

bash

ssh astro@your_vps_ip

If it works — and you can run sudo commands — you're good to go.

Step 4: Disable Root SSH Access

Once you're sure the new user works, edit the SSH config:

bash

sudo nano /etc/ssh/sshd_config

Find or add the line:

PermitRootLogin no

Save and restart SSH:

bash

sudo systemctl restart sshd

✅ Done!

Root login over SSH is now disabled — but you still have full access through your new user with SSH keys.

🔒 Security tip: You can also change the default SSH port for extra protection, or use a firewall to limit IPs.

Built by Node Runners.
For the Networks We Believe In.
🌐 astrostake.xyz

🚫 Disable Root Login (Safely) ​

Step 1: Ensure You Have a Non-Root User ​

Step 2: Copy Your SSH Key to the New User ​

Step 3: Test Your New Login ​

Step 4: Disable Root SSH Access ​

✅ Done! ​

🚫 Disable Root Login (Safely)

Step 1: Ensure You Have a Non-Root User

Step 2: Copy Your SSH Key to the New User

Step 3: Test Your New Login

Step 4: Disable Root SSH Access

✅ Done!