Date: Thu, 3 May 2001 10:46:43 -0400 From: "Dave VanAuken" <dave@hawk-systems.com> To: <freebsd-questions@FreeBSD.ORG> Subject: SSH security on FreeBSD Message-ID: <DBEIKNMKGOBGNDHAAKGNEEHPFEAA.dave@hawk-systems.com> In-Reply-To: <81D533F949E2CF1194FB00805FD4CBB702EAB3AB@res02-wnt248.corp.wang.com>
next in thread | previous in thread | raw e-mail | index | archive | help
quick question on the ramifications of a change. SSH default config sets password fallback to yes and root login to no need to remotely automate the updating of root only owned files to ensure that network files are maintained on several servers. Assuming only RSA auth is allowed, and no password fallback is allowed, what potential secutiry holes are opened by changing the "PermitRootLogin" to yes Still requires the connecting machine to match the keys to establish the connection... Changing this solves the problem, just hesitant to leave a "root login" open... seems like a big no-no thoughts? Dave To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DBEIKNMKGOBGNDHAAKGNEEHPFEAA.dave>