Date: 02 Nov 2001 14:37:26 -0800 From: swear@blarg.net (Gary W. Swearingen) To: Ben Eisenbraun <bene@klatsch.org> Cc: questions@FreeBSD.ORG Subject: Re: Lockdown of FreeBSD machine directly on Net Message-ID: <8s668sdck9.68s@localhost.localdomain> In-Reply-To: <20011102055416.B67495@klatsch.org> References: <15330.23714.263323.466739@guru.mired.org> <00b501c1637b$1cd2f880$0a00000a@atkielski.com> <20011102095554.A38169@student.uu.se> <00d801c1637c$d3264640$0a00000a@atkielski.com> <20011102055416.B67495@klatsch.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Ben Eisenbraun <bene@klatsch.org> writes: > change that to yes, HUP sshd, and it will allow root to login directly > via ssh. > > NOT RECOMMENDED. I'd like to why. I'd think that if you can't trust ssh you might as well give up. I'd think the tiny reduction in risk (if any) would not be worth even the few extra seconds it takes to do the "su" and password entry. IF we assume ssh is secure, isn't it as safe to login as root via ssh as at the system console? Or do people recommend that that not be allowed either? To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?8s668sdck9.68s>