Date: Fri, 2 Nov 2001 12:26:39 +0100 From: "Anthony Atkielski" <anthony@atkielski.com> To: "Ben Eisenbraun" <bene@klatsch.org> Cc: <questions@FreeBSD.ORG> Subject: Re: Lockdown of FreeBSD machine directly on Net Message-ID: <012101c16391$3f31ca80$0a00000a@atkielski.com> References: <15330.23714.263323.466739@guru.mired.org> <00b501c1637b$1cd2f880$0a00000a@atkielski.com> <20011102095554.A38169@student.uu.se> <00d801c1637c$d3264640$0a00000a@atkielski.com> <20011102055416.B67495@klatsch.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Ben writes: > in /etc/ssh/sshd_config is the line: > > PermitRootLogin no > > change that to yes, HUP sshd, and it will allow root > to login directly via ssh. I had already done that, but I think I found the problem: I was excluding group wheel in login.access. It works now. > NOT RECOMMENDED. What is the risk of ssh? It doesn't even use a password, much less send one in the clear. If you don't have a valid private key, you can't get in. I can see why telnet would be a risk, with passwords moving in the clear, and the relative ease of trying to guess passwords, but neither of these apply to ssh, as far as I know. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?012101c16391$3f31ca80$0a00000a>