SSH
The Secure Shell Protocol (SSH) is a cryptographic network protocol for operating network services securely over an unsecured network. Its most notable applications are remote login and command-line execution.
Setup an SSH Key
Generate a key pair:
ssh-keygen -b 4096Save the key in ~/.ssh/id_rsa
Copy the Key to the Server
ssh-copy-id username@remote_hostIf you dont have ssh-copy-id:
cat ~/.ssh/id_rsa.pub | ssh username@remote_host "mkdir -p ~/.ssh && touch ~/.ssh/authorized_keys && chmod -R go= ~/.ssh && cat >> ~/.ssh/authorized_keys"Deactivate Password Authentication
Open the file /etc/ssh/sshd_config with an editor like neovim or nano and uncomment the line PasswordAuthentication no.
...PasswordAuthentication no...Restart the ssh service afterwards:
sudo systemctl restart sshSSH Login Notifications
In this example a discord webhook with discord.sh is used but anything is possible.
Add a script which contains the following:
#!/bin/bashif [ "${PAM_TYPE}" = "open_session" ]; then
/root/discord.sh --text "New SSH Login as *$PAM_USER* from **[$PAM_RHOST](https://ipinfo.io/$PAM_RHOST)**"
fiDont forget to make it executable: chmod +x ssh_discord_notifications.sh
Now add the following to the /etc/pam.d/sshd file:
session optional pam_exec.so /root/script-location/ssh_discord_notifications.shRestart your ssh server and then this will now log the ip of a user when logging in with ssh.