[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Disallowing remote root login

Subject: Re: [cobalt-users] Disallowing remote root login
From: "Nico Meijer" <cobalt-users@xxxxxxxxxxxxxxx>
Date: Fri Apr 6 10:20:08 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Hi Rodolfo,

> I think that's backwards; I don't recall any ftpd ever putting root in
> ftpusers, but telnet has always allowed remote root login as I recall.

I have run RedHat Linux from version 5.0 and upwards. It is my understanding
that Cobalt OS is based on RedHat Linux 6.[something]. I've never seen any
version of RedHat Linux allow root login through telnet. Neither did
TurboLinux 6.x or Mandrake 6.x/7.x for that matter.

I have a copy of RedHat Linux 4.2 laying around. Have to try that one
someday. ;-)

> We think alike. :) However, the *first* thing I did was to install
> openssh and uninstall telnet altogether. But that allows a remote root
> login as well, which is how this thread started. It turns out that there
> is a PermitRootLogin parameter in etc/ssh/sshd_config that you can set
> to no.

Denying direct root login is of course a Good Thing. Personally, I wouldn't
go so far as to uninstall telnet. Disabling it standard, but enabling it
when needed, might save your butt when ssh somehow fails and the GUI is all
you have left.

Use with caution... Nico

References:
- RE: [cobalt-users] Disallowing remote root login
  - From: rpaiz

Prev by Date: Re: [cobalt-users] Attackalert
Next by Date: RE: [cobalt-users] Calendar/Scheduling
Previous by thread: RE: [cobalt-users] Disallowing remote root login
Next by thread: RE: [cobalt-users] Disallowing remote root login

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index