Date: Fri, 7 Jul 2000 16:18:28 +1000 From: Nick Slager <nicks@albury.net.au> To: questions@freebsd.org Subject: Root logins with ssh Message-ID: <20000707161827.A51081@albury.net.au>
next in thread | raw e-mail | index | archive | help
Obviously it's bad to permit root logins with ssh. However, from the sshd(8) manpage: PermitRootLogin Specifies whether the root can log in using ssh(1). The argument must be ``yes'', ``without-password'' or ``no''. The default is ``yes''. If this options is set to ``without-password'' only password authentication is disabled for root. Root login with RSA authentication when the command option has been specified will be allowed regardless of the value of this setting (which may be useful for taking remote backups even if root login is normally not allowed). It's that last paragraph that interests me. I want to keep PermitRootLogin set to 'no' in sshd_config, but allow root logins for backups with rsync/ssh. I can't seem to "make it so", though. I'm running openssh 2.1.1 (from the base system with 4.0-STABLE). Using SSH2 protocol with DSA keys, although it doesn't seem to work with SSH1 and RSA, either. Has anyone managed to do this? Pointers appreciated. thanks, Nick. -- From a Sun Microsystems bug report (#4102680): "Workaround: don't pound on the mouse like a wild monkey." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000707161827.A51081>