Re: Login Control
From: dewt (dewt@kc.rr.com)Date: 10/11/01
- Previous message: Kris Klika: "linux firewal and ipsec"
- In reply to: brad's @ Home: "Login Control"
- Next in thread: Michael Kjorling: "Re: Login Control"
- Next in thread: Chris Freeze: "RE: kazaa,gnutella,aimster blocks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: dewt <dewt@kc.rr.com> To: "brad's @ Home" <nelson.brad@home.com>, focus-linux@securityfocus.com Subject: Re: Login Control Date: Thu, 11 Oct 2001 15:31:38 -0500 Message-Id: <01101115313800.01733@monoceros.pretzel.myip.org>
On Thursday 11 October 2001 11:19 am, nelson.brad@home.com wrote:
> Hi,
>
> I would like to setup my box so the no one can log in as root but must su -
> from a user to root. It seems loggin would be more complete, but I am not
> an expert.
>
> Can anyone direct me to some resources that might help me accomplish this.
> I looked at "securetty" but I am a bit lost.
>
> Thanks,
>
> Brad
securetty is what you want, /etc/securetty lists all the terminals that the
root user is allowed to log in from (if the file doens't exist root may log
in from anywhere). Also i think ssh will ignore this, so you may have to edit
the sshd_config file (wherever that may be if you have it, mine's in
/etc/ssh/sshd_config) and change "PermitRootLogin yes" to "PermitRootLogin
no" (these are for openssh, real ssh might be a bit different)
- Previous message: Kris Klika: "linux firewal and ipsec"
- In reply to: brad's @ Home: "Login Control"
- Next in thread: Michael Kjorling: "Re: Login Control"
- Next in thread: Chris Freeze: "RE: kazaa,gnutella,aimster blocks"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
