LPIC-2 Exam 202 (Linux Engineer) — Question 31

Which of the following lines in the sshd configuration file should, if present, be changed in order to increase the security of the server? (Choose two.)

Answer options

• A. Protocol 2, 1
• B. PermitEmptyPasswords no
• C. Port 22
• D. PermitRootLogin yes
• E. IgnoreRhosts yes

Correct answer: A, D

Explanation

Changing 'Protocol 2, 1' to only 'Protocol 2' enhances security by ensuring only the more secure SSH protocol version is used. Additionally, setting 'PermitRootLogin' to 'no' is recommended to prevent direct root access, which can be a security risk. The other options either do not significantly impact security or are already set to recommended values.