Welcome to ARK Core v3
Technology Stack
Directory Structure
Data Models
Cryptography
Architecture
Application Lifecycle
Service Container
Service Provider
Managers and Drivers
Contracts
Services
Attributes
Cache
Events
Filesystem
Logging
Mixins
Pipeline
Queue
Schedule
Triggers
Validation
Understanding the Lifecycle
Understanding the Nonce
Transaction Types
Overview
Transfer
2nd Signature Registration
Delegate Registration
Vote / Unvote
Multisignature Registration
Ipfs
Multipayment
Delegate Resignation
HTLC
Entity
Introduction
Requirements
Configuring Core
Environment Variables
Using the Install Script
Installing from Source
Docker on Linux/macOS
Docker on Windows
Security Through Obscurity
Using SSH
Staying Up-to-Date
Applying iptables
Installing Fail2Ban
Setting Up Port Knocking
Cloudflare DDoS Protection
Core Run Modes
Core CLI Commands
Starting a Relay
Starting a Forger
Using Snapshots
Creating Factories
Launching a Testnet
Launching a Block Explorer
Using the Core-Tester-CLI
Creating Event Emitters
Creating API Servers
Implementing Milestones
Using Docker
Core CLI
Available Commands
Creating Commands
dApps
Authoring Core dApps
Modeling the Structure
Creating a Module
Plugins
Authoring Plugins
Managing Plugins
Custom Transactions
Authoring Transaction Types
Defining the Structure
Implementing the Builder
Implementing the Handler
Loading the dApp
Running the Example
Introduction
Using the Sandbox
Testing Plugins
Testing Transactions
2.0
2.0 Release Guide
2.0 Upgrade Guide
2.1
2.1 Release Guide
2.1 Upgrade Guide
2.2
2.2 Release Guide
2.2 Upgrade Guide
2.3
2.3 Release Guide
2.3 Upgrade Guide
2.4
2.4 Release Guide
2.4 Upgrade Guide
2.5
2.5 Release Guide
2.5 Upgrade Guide
2.6
2.6 Release Guide
2.6 Upgrade Guide
3.0
3.0 Release Guide
3.0 Upgrade Guide
3.0 Upgrade Guide (Docker)
3.8.2
3.8.2 Release Guide
3.8.2 Upgrade Guide
4.0 (Development)
4.0 Upgrade Guide - Devnet
Troubleshooting
Security Vulnerabilities
Contact Us

Using SSH

When running an ARK node, especially a Delegate Node, you should consider your server’s security as your main priority.

Warning

During this guide, we will configure network and SSH parameters, which if improperly performed might permanently lock you out of your server. Ensure you fully understand each step before proceeding.

SSH Security

Edit Your SSH Config

Edit your sshd_config by running the following command.

1sudo nano /etc/ssh/sshd_config

file: /etc/ssh/sshd_config

1# What ports, IPs and protocols we listen for
2Port 22

Change the 22 to a port of your choosing between 49152 and 65535. This is the new SSH port we will connect on. Since we are not using the default SSH port, it is crucial you do not forget what you choose, or you will not be able to access your server.

From now on port 22 is not usable for SSH connections.

file: /etc/ssh/sshd_config

1# What ports, IPs and protocols we listen for
2Port 55555

Authentication Settings

In the previous section, we had you create a new account for security purposes. You should never log in as root to your server after it has been set up. Our first security measure is going to be to disable root access altogether.

file: /etc/ssh/sshd_config

1# Authentication:
2LoginGraceTime 120
3PermitRootLogin yes
4StrictModes yes

Change LoginGraceTime to 60 and set PermitRootLogin to no

file: /etc/ssh/sshd_config

1# Authentication:
2LoginGraceTime 60
3PermitRootLogin no
4StrictModes yes

Disable X11 Forwarding

Set X11Forwarding to no.

file: /etc/ssh/sshd_config

1X11Forwarding yes
2X11DisplayOffset 10
3PrintMotd no
4PrintLastLog yes
5TCPKeepAlive yes
6#UseLogin no

/file: etc/ssh/sshd_config

1X11Forwarding no

Limit Max Concurrent Connections

Scroll down until you see the following line and uncomment MaxStartups. Then set MaxStartups to 2.

/file: etc/ssh/sshd_config

1#MaxStartups 10:30:60
2#Banner /etc/issue.net

file: /etc/ssh/sshd_config

1MaxStartups 2
2#Banner /etc/issue.net

Save Your Config File

Press CTRL+X to exit the file, Y to save the file and then Enter to write to the file and return to the command line.

Restart SSH Daemon

1sudo service ssh restart
2exit

Test New SSH Connection

1ssh user@yournode -p 55555

If everything was setup successfully, you should be reconnected to your ARK node. Replace 55555 with the port you chose when setting up your sshd_config.

Previous
Next
Last updated 2 years ago
Edit Page
Share: