Posted on 15.11.2022

New modern operating systems with improved security out of the box

Password strength has always been a concern for all internet-connected systems. Doubly so for any cloud servers with open service ports. If you’ve ever had a look at your Syslogs after deployment, many servers are immediately subjected to brute-force attacks straight from creation.

For the longest time, the best advice has been to disable password login and use SSH keys for authentication instead. Last year, we introduced one-time passwords for better security while highly recommending everyone move to the SSH-keys-only approach. Now with further changes coming with new operating system templates, it’s time to say goodbye to passwords!

SSH keys only going forward

Starting with the releases of the latest templates from Ubuntu, Alma and Rocky Linux, all new Cloud Server deployments are done with SSH keys only. Enabling password login at server creation is not available using these operating system templates. The following operating systems and any future versions can only be created with SSH keys:

  • Ubuntu 22.04 LTS
  • Alma Linux 9
  • Rocky Linux 9

When deploying one of these templates via your UpCloud Control Panel, you will notice only the SSH keys option is available. Consequently, the Metadata service needs to be enabled during deployment for adding the SSH keys to the server.

Similarly, if you are deploying a new Cloud Server using one of these templates via the UpCloud API, you will need to enable Metadata. The Metadata service can be disabled after server creation if not needed.

One-time passwords remain an option for older templates while available. If your service relies on password authentication, choose one of the other operating systems instead.

Janne Ruostemaa

Editor-in-Chief

Improving site-to-site VPN security and performance for multi-site businesses

In the interconnected business world, a Virtual Private Network (VPN) is more than just a tool for bypassing geo-restrictions. It’s critical for safeguarding your digital footprint, especially when dealing with sensitive business-critical data. In the post, we explore what site-to-site VPNs offer for businesses, the best practices for strengthening their security and optimizing its performance […]

UpCloud Insights

Long reads

European Cloud, Global Reach 

The shifting global geopolitical landscape is forcing many organizations to revisit their cloud strategies to ensure stability, security, and future scalability. As the world looks to migrate data and services to Europe, organisations should take care to evaluate cloud service providers (CSPs) on their certifications, security controls, and ability to support regulatory requirements relevant to […]

Data Sovereignty

The evolution of cloud servers in modern computing

Cloud computing has drastically changed how information technology (IT) professionals utilise technology. This infrastructure has enabled businesses to use online tools, platforms, and storage spaces, thereby reducing the costs and operational requirements of having a physical setup. Leveraging the cloud reduces costs in data storage, application execution, operations scaling, and more. Due to this and […]

Industry analyses

Long reads

Back to top