From owner-freebsd-questions@FreeBSD.ORG Tue Jul 24 19:46:37 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 4EDB916A419 for ; Tue, 24 Jul 2007 19:46:37 +0000 (UTC) (envelope-from jjfitzgerald@gmail.com) Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.174]) by mx1.freebsd.org (Postfix) with ESMTP id D81F113C442 for ; Tue, 24 Jul 2007 19:46:36 +0000 (UTC) (envelope-from jjfitzgerald@gmail.com) Received: by ug-out-1314.google.com with SMTP id o4so233397uge for ; Tue, 24 Jul 2007 12:46:35 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=lkb/YbdYI/rUuaOJNJUwWWhuTCPWQ4BoTbyUuCSPV+iDxSjupY6bxfRD/wSVJpFqLOf0otFHcl3FgUbrlTNuOmeEVxA33IsV7qBAAF5oovU+souHZ6a/8mMBGaXcAwfzuTU3SlwfsAU6ywJ1JTWcplJnM4XKt0N94euCzcmxSwo= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VWa0PzpZ1Pe+FYosdkNLWTkkfojzT5a079diTMOZYUBaIlOXRWHspDyR4FE/1V1OM27RBMcZ5YAlxuTkvbzpihSvAewu29vSGsq1tjJwouCUk6TzDFmqizS52iX/eHisgZXSG9X7qtEZrLIScq79coWl5GJQUiDmmgOnmpt8rFY= Received: by 10.82.127.14 with SMTP id z14mr3593686buc.1185306394753; Tue, 24 Jul 2007 12:46:34 -0700 (PDT) Received: by 10.82.162.9 with HTTP; Tue, 24 Jul 2007 12:46:34 -0700 (PDT) Message-ID: <5e49673f0707241246x3afc4f75q32d7c5052ed3548a@mail.gmail.com> Date: Tue, 24 Jul 2007 15:46:34 -0400 From: "John Fitzgerald" To: "Hakan K" In-Reply-To: <105fa37b0707241242t432ef3a2ufc5b0473d558dfe4@mail.gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <11066.217.114.136.135.1180427946.squirrel@llca513-a.servidoresdns.net> <465d3e9e.uyoP2YaUttmVs6ON%perryh@pluto.rain.com> <20070724213326.5e8aa27d@localhost> <200707241927.38359.lists-fbsd@shadypond.com> <105fa37b0707241242t432ef3a2ufc5b0473d558dfe4@mail.gmail.com> Cc: Pollywog , freebsd-questions@freebsd.org Subject: Re: connecting user root with ssh X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Jul 2007 19:46:37 -0000 In /etc/ssh/sshd_config uncomment Port 22 and change it. On 7/24/07, Hakan K wrote: > How can I change the ssh port? > > > > Thanks > Troy > http://dominor.com > > On 7/24/07, Pollywog wrote: > > > > On Tuesday 24 July 2007 11:33:26 Norberto Meijome wrote: > > > On Wed, 30 May 2007 02:06:38 -0700 > > > > > > perryh@pluto.rain.com wrote: > > > > * If "root" cannot log in remotely, a cracker has to guess three > > > > > > guess or brute force - so quite long random passwords (or ssh keys) are > > > extremely recommendable. > > > > > > > things to obtain root access, instead of just one: > > > > > > > > + A valid username which is in the "wheel" group; > > > > + That user's password; > > > > + The root password. > > > > > > that is assuming, of course, that the user your just logged in with > > belongs > > > to wheel. > > > > If one must allow root logins via ssh, I recommend in sshd_config: > > > > PermitRootLogin without-password > > > > This will force the use of a passphrase and disallow root login with just > > a > > password. > > _______________________________________________ > > freebsd-questions@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > > To unsubscribe, send any mail to " > > freebsd-questions-unsubscribe@freebsd.org" > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >