[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] root login on RaQ3

Subject: Re: [cobalt-users] root login on RaQ3
From: "Brian Curtis" <webmaster@xxxxxxxxxxx>
Date: Sat Mar 11 10:38:41 2000
Organization: Pomfret Computer Technologies

> >It is a security risk to allow direct root login to any machine.  Telnet
in
> >using your admin username/pass combo, the type 'su' (w/o the quotes) and
> >enter your root password.  You will then be logged in as the root user of
> >the machine.
>
> Just for the heck of it, Brian, can you tell me why this isn't a security
> threat?
>
> <smile>
>
> Thanks.
>
> Jeff

Jeff,

I never said it wasn't a security risk...  I should have said that it is a
MAJOR security risk to allow direct root logins.

I feel that allowing any type of remote connection to a server is a security
risk, encrypted or not.  Not allowing a direct root login only makes it a
bit harder for dictionary style password attacks and the like.

If you have a box connected to the Internet, I'm sure there's someone out
there who could break into it no matter what security precautions you take.

Being 'root compromised' myself recently, I was trying to answer the
question w/o scaring the person.  Live and learn I guess.

<crawling back into my hole now>

Brian

Follow-Ups:
- Re: [cobalt-users] root login on RaQ3
  - From: Jeff Lasman

References:
- [cobalt-users] root login on RaQ3
  - From: Tim Storm
- Re: [cobalt-users] root login on RaQ3
  - From: Jeff Lasman

Prev by Date: Re: [cobalt-users] "Bug" in the Cobalt GUI
Next by Date: RE: [cobalt-users] Same username in multiple domains?
Previous by thread: Re: [cobalt-users] root login on RaQ3
Next by thread: Re: [cobalt-users] root login on RaQ3

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index