From owner-freebsd-questions@FreeBSD.ORG Mon Mar 13 21:27:15 2006 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1813716A428 for ; Mon, 13 Mar 2006 21:27:15 +0000 (UTC) (envelope-from nalists@scls.lib.wi.us) Received: from mail.scls.lib.wi.us (mail.scls.lib.wi.us [198.150.40.25]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1746043D49 for ; Mon, 13 Mar 2006 21:27:12 +0000 (GMT) (envelope-from nalists@scls.lib.wi.us) Received: from [172.26.2.238] ([172.26.2.238]) by mail.scls.lib.wi.us (8.12.9p2/8.12.9) with ESMTP id k2DLR2hG042916; Mon, 13 Mar 2006 15:27:02 -0600 (CST) (envelope-from nalists@scls.lib.wi.us) Message-ID: <4415E3A6.6090102@scls.lib.wi.us> Date: Mon, 13 Mar 2006 15:27:02 -0600 From: Greg Barniskis User-Agent: Thunderbird 1.5 (Windows/20051201) MIME-Version: 1.0 To: Huy Ton That References: <1cac28080603131312w19f4e949m26165478377fbdb5@mail.gmail.com> In-Reply-To: <1cac28080603131312w19f4e949m26165478377fbdb5@mail.gmail.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Cc: questions@freebsd.org Subject: Re: SSHD Help? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 13 Mar 2006 21:27:15 -0000 Huy Ton That wrote: > I am sure I am lacking the technical knowledge to get this running but. I > setup (more like started) the sshd daemon. Now I have this system setup at > home and am just using it for experimenting. When I try to SSH into it, it > queries me for my user name, in which case I am logging in as root. I key > in roots password (is this password the same as the main root password?) and > it returns permission denied, please try again. > > I'm guessing I am not asking the right questions but I was under the > assumption that the password would be the same as root or whatever user I'm > trying to login? Any tutorials? I'm going crazy :(. As part of the default security posture of sshd, root is not allowed to log in remotely, only on the console. It is best practice to log in as a regular user (who is a member of the wheel group) and then use su (or sudo) to perform tasks that require root privilege. This practice results in better logging of "who did what when". If you really want to allow remote ssh root logins (seriously, you probably don't ;) this can be achieved. See: man sshd_config -- Greg Barniskis, Computer Systems Integrator South Central Library System (SCLS) Library Interchange Network (LINK) , (608) 266-6348