From owner-freebsd-questions@FreeBSD.ORG Sun May 11 19:54:14 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7E7D21065682 for ; Sun, 11 May 2008 19:54:14 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: from outbound-mail-34.bluehost.com (outbound-mail-34.bluehost.com [69.89.18.154]) by mx1.freebsd.org (Postfix) with SMTP id 548398FC20 for ; Sun, 11 May 2008 19:54:14 +0000 (UTC) (envelope-from perrin@apotheon.com) Received: (qmail 26332 invoked by uid 0); 11 May 2008 19:54:12 -0000 Received: from unknown (HELO box183.bluehost.com) (69.89.25.183) by outboundproxy2.bluehost.com with SMTP; 11 May 2008 19:54:12 -0000 Received: from c-24-8-180-234.hsd1.co.comcast.net ([24.8.180.234] helo=demeter.hydra) by box183.bluehost.com with esmtpa (Exim 4.68) (envelope-from ) id 1JvHca-0000ce-3N for freebsd-questions@freebsd.org; Sun, 11 May 2008 13:54:12 -0600 Received: by demeter.hydra (sSMTP sendmail emulation); Sun, 11 May 2008 13:54:13 -0600 Date: Sun, 11 May 2008 13:54:13 -0600 From: Chad Perrin To: freebsd-questions@freebsd.org Message-ID: <20080511195413.GB81732@demeter.hydra> Mail-Followup-To: freebsd-questions@freebsd.org References: <812883.11120.qm@web54010.mail.re2.yahoo.com> <3120c9e30805101308q55d93966p69914d3bde9a3139@mail.gmail.com> Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="zx4FCpZtqtKETZ7O" Content-Disposition: inline In-Reply-To: <3120c9e30805101308q55d93966p69914d3bde9a3139@mail.gmail.com> User-Agent: Mutt/1.4.2.3i X-Identified-User: {737:box183.bluehost.com:apotheon:apotheon.com} {sentby:smtp auth 24.8.180.234 authed with perrin@apotheon.com} DomainKey-Status: no signature Subject: Re: root login stops working X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 11 May 2008 19:54:14 -0000 --zx4FCpZtqtKETZ7O Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Sun, May 11, 2008 at 01:38:52AM +0530, =E0=A4=85=E0=A4=A8=E0=A5=81=E0=A4= =9C Anuj Singh wrote: > Direct root login is disabled by default. are you able to login from your > 10.11.12.104 as a non root user? What client software are you using on yo= ur > 10.11.12.104 for logging on to your freebsd? Correction: Direct root login via SSH is disabled by default. If you need root access, you should use a staff account in the wheel group to remotely log into the machine, then su to root. You should, however, be able to log in as root from a TTY console for local access. The fact that remote direct root login is disabled is a security feature, meant to prevent things like brute-force attacks on root over the network. It's a bad idea to change that behavior, in general. Back when I was using Debian for all my servers, I would configure sshd to disable direct root login -- and was pleased to find that on FreeBSD it's disabled by default, once I started using FreeBSD for all my servers. --=20 CCD CopyWrite Chad Perrin [ http://ccd.apotheon.org ] John Kenneth Galbraith: "If all else fails, immortality can always be assured through spectacular error." --zx4FCpZtqtKETZ7O Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.8 (FreeBSD) iEYEARECAAYFAkgnTuUACgkQ9mn/Pj01uKUAdQCeKESC7SgCa6rORHLctoSd9jQA rPUAoJA/9QY4KnQAQT5c1U3Ri7kFhum/ =vpi2 -----END PGP SIGNATURE----- --zx4FCpZtqtKETZ7O--