{"id":196,"date":"2016-03-30T00:11:17","date_gmt":"2016-03-29T21:11:17","guid":{"rendered":"http:\/\/www.domainhizmetleri.com\/blog\/?p=196"},"modified":"2024-06-23T14:16:42","modified_gmt":"2024-06-23T11:16:42","slug":"linux-sunucularda-ssh-port-degistirme","status":"publish","type":"post","link":"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/","title":{"rendered":"Centos 7\/8\/9, AlmaLinux 8\/9 Sunucularda SSH Port De\u011fi\u015ftirme"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_83 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Yaz\u0131 \u0130\u00e7eri\u011fi<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"\u0130\u00e7indekiler Tablosunu A\u00e7\/Kapat\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #0a0a0a;color:#0a0a0a\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #0a0a0a;color:#0a0a0a\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/#1_SSHD_Config_Dosyasini_Duzenleyin\" >1) SSHD Config Dosyas\u0131n\u0131 D\u00fczenleyin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/#2_SELinux_Aktifse_Portu_Tanimlayin\" >2) SELinux Aktifse Portu Tan\u0131mlay\u0131n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/#3_Firewalla_Yeni_SSH_Portunu_Ekleyin\" >3) Firewall&#8217;a Yeni SSH Portunu Ekleyin<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/#4_Servisi_Yeniden_Baslatin\" >4) Servisi Yeniden Ba\u015flat\u0131n<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.domainhizmetleri.com\/blog\/linux-sunucularda-ssh-port-degistirme\/#5_Kontrol\" >5) Kontrol<\/a><\/li><\/ul><\/nav><\/div>\n<p>SSH (Secure Shell \/ G\u00fcvenli Kabuk), bir sunucunun en \u00f6nemli a\u011f protokol\u00fcd\u00fcr. Varsay\u0131lan Port numaras\u0131 22&#8217;dir.<\/p>\n<p>Sunucunun t\u00fcm yaz\u0131l\u0131msal y\u00f6netiminin yap\u0131labildi\u011fi bu protokol\u00fcn port numaras\u0131 (kap\u0131s\u0131) sabittir ve sald\u0131r\u0131lara \u00e7ok a\u00e7\u0131kt\u0131r. Bu sebeple\u00a0de\u011fi\u015ftirilmesini \u00f6nermekteyiz.<\/p>\n<p>A\u015fa\u011f\u0131daki y\u00f6ntemler ile h\u0131zl\u0131 \u015fekilde CentOS 7, CentOS 8, CentOS 9, AlmaLinux 8, AlmaLinux 9 sunucular i\u00e7in varsay\u0131lan SSH portunu de\u011fi\u015ftirebilirsiniz.<\/p>\n<div class=\"mks_pullquote mks_pullquote_\" style=\"width:300px; font-size: 16px; color: #000; background-color:;\">\n<h2>H\u0131zl\u0131 G\u00fcncelleme Scripti<\/h2>\n<p class=\"lang:sh decode:true \">A\u015fa\u011f\u0131daki komut, SSH portu default <strong>22<\/strong> olan sunucularda tek ad\u0131mda portu <strong>2210<\/strong> olarak veya <strong>diledi\u011finiz<\/strong> bir port olacak \u015fekilde g\u00fcncellemeyi sa\u011flamaktad\u0131r. Bu komutu Putty veya Terminal \u00fczerinden kopyala\/yap\u0131\u015ft\u0131r ile \u00e7al\u0131\u015ft\u0131rd\u0131\u011f\u0131n\u0131zda SSH portunuz otomatik olarak g\u00fcncellenecektir.<\/p>\n<pre>sh &lt;(curl https:\/\/file.dh.web.tr\/bash\/linux_ssh_port_degistirme)<\/pre>\n<p>Bunun yerine ad\u0131m ad\u0131m kendiniz ilerlemek isterseniz, bu b\u00f6l\u00fcm\u00fc atlay\u0131p a\u015fa\u011f\u0131dan devam edebilirsiniz.<\/div>\n<h1>Ad\u0131m ad\u0131m uygulama i\u00e7in:<\/h1>\n<h3><span class=\"ez-toc-section\" id=\"1_SSHD_Config_Dosyasini_Duzenleyin\"><\/span>1) SSHD Config Dosyas\u0131n\u0131 D\u00fczenleyin<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Sunucunuza Putty veya Terminal arac\u0131l\u0131\u011f\u0131yla ba\u011fland\u0131ktan sonra a\u015fa\u011f\u0131daki komut ile SSHD konfig\u00fcrasyon dosyas\u0131n\u0131 a\u00e7\u0131n:<\/p>\n<pre class=\"lang:default decode:true\">yum install nano -y &amp;&amp; nano \/etc\/ssh\/sshd_config<\/pre>\n<p><em>E\u011fer nano komutu \u00e7al\u0131\u015fmad\u0131ysa, &#8220;yum install nano -y&#8221; ile program\u0131 kurabilirsiniz.<\/em><\/p>\n<p>A\u00e7\u0131lan edit\u00f6rde a\u015fa\u011f\u0131daki sat\u0131r\u0131 bulun<br \/>\n#Port 22<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-200\" src=\"https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1.png\" alt=\"ssh1\" width=\"1003\" height=\"466\" srcset=\"https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1.png 1003w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1-300x139.png 300w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1-260x121.png 260w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1-50x23.png 50w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/ssh1-150x70.png 150w\" sizes=\"auto, (max-width: 1003px) 100vw, 1003px\" \/><\/p>\n<p>Ve ba\u015f\u0131ndaki # i\u015faretini silip port numaras\u0131n\u0131 de\u011fi\u015ftirin. 2210 \u00f6rnektir. Siz kendinize ait bir rakam yazabilirsiniz:<\/p>\n<pre class=\"lang:sh decode:true\">Port 2210<\/pre>\n<p>Ard\u0131ndan Ctrl+X ile \u00e7\u0131kmaya \u00e7al\u0131\u015f\u0131n. Sizden onay isteyecektir. Y&#8217;ye bas\u0131n ve Enter&#8217;a basarak de\u011fi\u015fikli\u011fi kaydedin ve \u00e7\u0131k\u0131\u015f yap\u0131n.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"2_SELinux_Aktifse_Portu_Tanimlayin\"><\/span>2) SELinux Aktifse Portu Tan\u0131mlay\u0131n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p><strong>OpenVZ harici sanal veya fiziksel sunucularda, SELinux aktif ise sadece 22 portuyla SSH&#8217;a ba\u011flan\u0131lmas\u0131na izin verecektir.<br \/>\n<\/strong><strong>Terminalde &#8220;getenforce&#8221; komutunu \u00e7al\u0131\u015ft\u0131rd\u0131\u011f\u0131n\u0131zda kar\u015f\u0131n\u0131za &#8220;Enforcing&#8221; yan\u0131t\u0131 geliyorsa SELinux aktif demektir. Bu sebeple bu b\u00f6l\u00fcmdeki ad\u0131mlar\u0131 uygulay\u0131n.<\/strong><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-full wp-image-1217\" src=\"https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/putty_2018-12-27_14-01-30.png\" alt=\"\" width=\"273\" height=\"69\" srcset=\"https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/putty_2018-12-27_14-01-30.png 273w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/putty_2018-12-27_14-01-30-260x66.png 260w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/putty_2018-12-27_14-01-30-50x13.png 50w, https:\/\/www.domainhizmetleri.com\/blog\/wp-content\/uploads\/putty_2018-12-27_14-01-30-150x38.png 150w\" sizes=\"auto, (max-width: 273px) 100vw, 273px\" \/><\/p>\n<p>&#8220;Permissive&#8221; ya da &#8220;Disabled&#8221; ald\u0131ysan\u0131z 3. ad\u0131ma devam edin. Enforcing yaz\u0131yor ise, a\u015fa\u011f\u0131daki komutlar\u0131 uygulay\u0131n.<\/p>\n<pre>sudo yum install -y policycoreutils-python\nsudo yum install -y policycoreutils-python-utils\nsudo semanage port -a -t ssh_port_t -p tcp 2210<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"3_Firewalla_Yeni_SSH_Portunu_Ekleyin\"><\/span>3) Firewall&#8217;a Yeni SSH Portunu Ekleyin<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<pre class=\"lang:sh decode:true\">firewall-cmd --permanent --zone=public --add-port=2210\/tcp\nfirewall-cmd --reload\n\n<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"4_Servisi_Yeniden_Baslatin\"><\/span>4) Servisi Yeniden Ba\u015flat\u0131n<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<pre class=\"lang:sh decode:true\">sudo systemctl restart sshd.service<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"5_Kontrol\"><\/span>5) Kontrol<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Bu komut ile SSH portun de\u011fi\u015fip de\u011fi\u015fmedi\u011fini kontrol edin. E\u011fer \u00a0*:2210 (ya da girdi\u011finiz port) g\u00f6r\u00fcn\u00fcyorsa\u00a0sorun yok demektir:<\/p>\n<pre class=\"lang:default decode:true\">ss -tnlp|grep ssh<\/pre>\n<p>Kar\u015f\u0131n\u0131za gelmesi gereken ekran \u00e7\u0131kt\u0131s\u0131:<\/p>\n<pre class=\"lang:sh decode:true \">LISTEN          0                128                              *:2210 *:*                                     users:((\u201csshd\u201d,10783,3))\nLISTEN          0               128                              :::2210 :::*                                     users:((\u201csshd\u201d,10783,4))\n\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>SSH (Secure Shell \/ G\u00fcvenli Kabuk), bir sunucunun en \u00f6nemli a\u011f protokol\u00fcd\u00fcr. Varsay\u0131lan Port numaras\u0131 22&#8217;dir. Sunucunun t\u00fcm yaz\u0131l\u0131msal y\u00f6netiminin yap\u0131labildi\u011fi bu protokol\u00fcn port numaras\u0131 (kap\u0131s\u0131) sabittir ve sald\u0131r\u0131lara \u00e7ok a\u00e7\u0131kt\u0131r. Bu sebeple\u00a0de\u011fi\u015ftirilmesini \u00f6nermekteyiz. A\u015fa\u011f\u0131daki y\u00f6ntemler ile h\u0131zl\u0131 \u015fekilde CentOS 7, CentOS 8, CentOS 9, AlmaLinux 8, AlmaLinux 9 sunucular i\u00e7in varsay\u0131lan SSH portunu de\u011fi\u015ftirebilirsiniz. [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":2507,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[147],"tags":[15,31,26,35,36],"class_list":["post-196","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-sunucu","tag-centos","tag-cpanel","tag-server","tag-ssh","tag-sunucu"],"views":6924,"_links":{"self":[{"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/posts\/196","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/comments?post=196"}],"version-history":[{"count":13,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/posts\/196\/revisions"}],"predecessor-version":[{"id":6790,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/posts\/196\/revisions\/6790"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/media\/2507"}],"wp:attachment":[{"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/media?parent=196"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/categories?post=196"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.domainhizmetleri.com\/blog\/wp-json\/wp\/v2\/tags?post=196"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}