Is DigitalOcean's console access safe? Can I disable it?

February 9, 2018 329 views
DigitalOcean Security Ubuntu
jattas
By:
jattas

After successfully setting up SSH Key Authentication and disabling password access to my server, I can still log in as either 'newuser' or root using DigitalOcean's console access. Is this normal? It seems very risky.

1 Answer
jonleibowitz February 9, 2018
Accepted Answer

The console of your droplet is the virtual server equivalent of being directly attached to the server's physical keyboard and monitor ports - it is not an SSH interface.

This tutorial describes its use:

https://www.digitalocean.com/community/tutorials/how-to-use-the-digitalocean-console-to-access-your-droplet

In this guide, we'll show you how to use the DigitalOcean console to log in to your Droplet. The console provides "out-of-band" access, which means that it will be available regardless of your network settings. It emulates the access you would have if you were sitting down with a keyboard and monitor attached to the actual server. We can use this feature to log in, revert bad settings, and regain control.
Have another answer? Share your knowledge.