Date: Sun, 11 May 2008 13:58:46 -0600 From: Chad Perrin <perrin@apotheon.com> To: freebsd-questions@freebsd.org Subject: Re: root login stops working Message-ID: <20080511195846.GC81732@demeter.hydra> In-Reply-To: <812883.11120.qm@web54010.mail.re2.yahoo.com> References: <812883.11120.qm@web54010.mail.re2.yahoo.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--rQ2U398070+RC21q Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sat, May 10, 2008 at 11:50:46AM -0700, Dennis Flynn wrote: > I'm running FreeBSD wx.dennis-flynn.net 7.0-RELEASE FreeBSD 7.0-RELEASE #= 0: Sun Feb 24 19:59:52 UTC 2008 root@logan.cse.buffalo.edu:/usr/obj/usr= /src/sys/GENERIC i386 >=20 > About a day after install root login no longer works - even on the consol= e. >=20 > I see the following in /var/log/auth.log: > May 10 14:22:37 wx sshd[86223]: Accepted password for root from 10.11.12.= 104 port 1492 ssh2 > May 10 14:22:37 wx sshd[86223]: Received disconnect from 10.11.12.104: 0:= =20 I'd say this was expected behavior, since FreeBSD disbles direct root login over SSH by default (for good reason), but . . . >=20 > And in /var/log/messages: > May 10 14:27:51 wx kernel: pid 86237 (csh), uid 0: exited on signal 11 (c= ore dumped) =2E . . this looks suspicious. I'm pretty sure you don't get any core dumps when sshd refuses to let you log in as root. >=20 > New to FreeBSD after using Linux for a long time. I'd really like to get= this to workfor my web server/weather station which is currently running o= n Debian Linux. For security purposes, you should probably actually configure your Debian system to behave more like your FreeBSD system, with regard to SSH. Set the PermitRootLogin value in /etc/ssh/sshd_config to "no" to prevent remote logins over SSH as root. This behavior is intended as a security measure. To access root remotely, log in over SSH as an account that has su access, then su to root, rather than just logging in as root directly. To grant an account on FreeBSD su access to root, add it to the wheel group. --=20 CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] print substr("Just another Perl hacker", 0, -2); --rQ2U398070+RC21q Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.8 (FreeBSD) iEYEARECAAYFAkgnT/YACgkQ9mn/Pj01uKVizgCeP42F0Z3TthulzzT1bvcXH02w OtMAoKNcsc3CQnwEvolW2dV2jKBW/Ew2 =3XIh -----END PGP SIGNATURE----- --rQ2U398070+RC21q--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080511195846.GC81732>