Date: Fri, 05 Oct 2001 12:48:04 -0400 From: Raoul Schroeder <memphis_ms@gmx.net> To: Kutulu <kutulu@kutulu.org> Cc: Sheldon Hearn <sheldonh@starjuice.net>, stable@FreeBSD.ORG Subject: Re: Why sshd:PermitRootLogin = no ? Message-ID: <3BBDE444.3815EBB1@gmx.net> References: <5.1.0.14.0.20011005120304.009f8590@127.0.0.1>
next in thread | previous in thread | raw e-mail | index | archive | help
In my opinion the way to go is: Member of wheel (not root) with star-ed out password. Login with SSH and RSA (password protected) Then you can SU to install (which is really the biggest weakness, because once more the cleartext password goes over the wire... Encrypted, but still) The most important reason is that a SSH login from root is NOT logged, however an SU is... So, it is easier to see if security has been compromised. Just my $0.02 Raoul To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BBDE444.3815EBB1>