From owner-freebsd-questions Sun Jun 2 23: 1:40 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail.gbronline.com (mail.gbronline.com [12.145.226.4]) by hub.freebsd.org (Postfix) with ESMTP id 2AB4E37B403 for ; Sun, 2 Jun 2002 23:01:35 -0700 (PDT) Received: from daleco [12.145.226.81] by mail.gbronline.com (SMTPD32-7.10) id A5E857D0096; Mon, 03 Jun 2002 01:00:08 -0500 Message-ID: <009e01c20ac4$07da25c0$38e2910c@daleco> From: "Kevin Kinsey, DaleCo, S.P." To: "Matt Ronge" , "FreeBSD Questions LIST" References: Subject: Re: No Root Password? Date: Mon, 3 Jun 2002 01:00:56 -0500 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Matt Ronge said: > I was playing around with sshd and all of a sudden my machine doesn't > require a password for root. > > When I login locally doesn't ask for one, when I login over ssh it accepts > anything. Also the other user accounts require passwords. > > What did I do? Not sure, but likely it would be wise to remove *any* possibility of a root login via SSH. Add 'PermitRootLogin no' to /etc/sshd_config and add a personal account to wheel group, then use 'su' to gain privileges when needed. Here are some other random thoughts... Check for 'PermitEmptyPasswords yes' in /etc/ssh/sshd_config... make it 'no' Check that you are not using key-based auth --- perhaps the client box has the key? Best yet, read up on key-based auth and learn to use it instead of passwords.... My 2 cents, Kevin Kinsey To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message