Date: Thu, 20 Jan 2000 00:21:32 +0900 From: sen_ml@eccosys.com To: freebsd-security@FreeBSD.ORG Subject: Re: ssh-feature 'backdoor' Message-ID: <20000120002132R.1000@eccosys.com> In-Reply-To: <20000119155203.C8404@is.co.za> References: <20000119134325.J2167@supra.rotterdam.luna.net> <20000119155203.C8404@is.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
marcs> That should never happen if this line is in your sshd_config file: marcs> PermitRootLogin no marcs> I think it's better to log in as your user and then su to root. if you su, don't you have to type in the root password? even if the session is encrypted, the password still goes over the wire. if you use rsa key authentication you don't have that particular risk (though you may have others). i don't think it is clear-cut whether it is better one way or the other. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000120002132R.1000>