Date: Tue, 14 Jun 2005 16:59:15 -0400 From: Chuck Swiger <cswiger@mac.com> To: Vinicius Pavanelli Vianna <ds@hacked.com.br> Cc: freebsd-questions@freebsd.org Subject: Re: Access granted even on root password change Message-ID: <42AF4523.9080407@mac.com> In-Reply-To: <42AF3EC7.3050008@hacked.com.br> References: <42AF3EC7.3050008@hacked.com.br>
next in thread | previous in thread | raw e-mail | index | archive | help
Vinicius Pavanelli Vianna wrote: > How could I afford that i can get always access to my remote server even > in the case of a breakin by some script kiddie/hack? I thought about > setting a key in ssh so i can log using it even the root password is > changed, but this is simple to stop and it's not good to assume lack of > knowledge of others ;) > Anyone knows a good backup access system, like a rootkit for FreeBSD? Enable another uid-0 account, such as the one called toor? Setup sudo access for some other account which can run passwd or a shell as root, gaining superuser perms via the account password? Note that having someone untrusted gain superuser access to a machine should be cause for backing up the system and reinstalling from scratch or restoring from a known-OK backup.... -- -Chuck
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42AF4523.9080407>