From owner-freebsd-questions@FreeBSD.ORG Thu Jan 21 04:02:54 2010 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id C50641065672 for ; Thu, 21 Jan 2010 04:02:54 +0000 (UTC) (envelope-from glen.j.barber@gmail.com) Received: from qw-out-2122.google.com (qw-out-2122.google.com [74.125.92.24]) by mx1.freebsd.org (Postfix) with ESMTP id 7C9B08FC08 for ; Thu, 21 Jan 2010 04:02:54 +0000 (UTC) Received: by qw-out-2122.google.com with SMTP id 5so1340948qwd.7 for ; Wed, 20 Jan 2010 20:02:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:date:from:to:cc:subject :message-id:references:mime-version:content-type:content-disposition :in-reply-to:user-agent; bh=DEBaQKXj6Bwyow507aiCIRExFwcsdCLWDLN+GAWF6mQ=; b=scn5ALvWHWUqtKFgO0QGZho3hIqPPV1cE12Yka0u+VJfrX+L3+/xsKbiO8LropOFfm 23SxKmsYscmRLysYPLKLqgZbDNJ6ambtc24ZP7rOClSTqE0GY50j7kkdQQft+/R1eyqH g+XHTtqtH5/RAVzSz++93CRT84y9/PxkpMCtw= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:in-reply-to:user-agent; b=UocNjgrezJzAfWRtQ0am6NFvxxlSvktqCp/i0CtBj04zQ3F7+IejCwQo6qidbBGQfs F1636qW5vVAV2sXPyst4lsYhLHECAz8zmh6tLN3gI+b5HXtraSyXpJadt68aoV46zw6q Cie6inPVdsmGdLg3Dll0W2hK0Nv8LMAS15FUI= Received: by 10.224.17.225 with SMTP id t33mr631408qaa.150.1264046573930; Wed, 20 Jan 2010 20:02:53 -0800 (PST) Received: from orion.hsd1.pa.comcast.net (c-71-230-240-241.hsd1.pa.comcast.net [71.230.240.241]) by mx.google.com with ESMTPS id 20sm462553qyk.13.2010.01.20.20.02.51 (version=SSLv3 cipher=RC4-MD5); Wed, 20 Jan 2010 20:02:51 -0800 (PST) Date: Wed, 20 Jan 2010 22:59:32 -0500 From: Glen Barber To: "Aryeh M. Friedman" Message-ID: <20100121035932.GA12539@orion.hsd1.pa.comcast.net> References: <4B57CE44.9060404@gmail.com> <4B57CEB5.2050001@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <4B57CEB5.2050001@gmail.com> User-Agent: Mutt/1.5.20 (2009-06-14) Cc: freebsd-questions@freebsd.org Subject: Re: ssh to root X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Jan 2010 04:02:54 -0000 Hi, Aryeh M. Friedman wrote: > I need to set up a machine so that I can type "ssh [host]" as root from > some other host and I get a prompt with super user privs... I already > have set this up for user@host for root and ssh host for normal users... > but root still asks for a password after I set the authorized_keys file > in ~root/.ssh.. I have looked at ssh_config(5) but can't tell what > option (if any) does this PermitRootLogin is set to 'no' by default in /etc/ssh/sshd_config. It isn't advisable disabling this extra layer of security. Regards, -- Glen Barber