MORE SSH Hacking: heads-up
Alexander Dalloz
alexander.dalloz at uni-bielefeld.de
Tue Aug 10 12:54:49 UTC 2004
Am Di, den 10.08.2004 schrieb Dave Rinker um 6:30:
> I agree with both comments but recommend that you disable the ability of
> root to login at all. Users can always su to root.
That has the severe downside, that if someone got on the system as an
unprivileged user he could sniff while you are su'ing to root, which is
not successful if you ssh in as root using publick key authentication
rather than password authentication.
Alexander
--
Alexander Dalloz | Enger, Germany | GPG key 1024D/ED695653 1999-07-13
Fedora GNU/Linux Core 2 (Tettnang) kernel 2.6.7-1.494.2.2smp
Serendipity 14:52:41 up 6 days, 8:20, load average: 0.38, 0.46, 0.74
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: Dies ist ein digital signierter Nachrichtenteil
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20040810/4edd2178/attachment-0001.sig>
More information about the fedora-list
mailing list