Re: Password scan

From: Ertugrul Soeylemez <never@xxxxxxxxxxxxxx>
Date: Sun, 24 Dec 2006 17:56:10 +0100

"Nico" <nkadel@xxxxxxxxx> (06-12-23 23:08:08):

Bad idea. If you need to login to a normal user first, and then
issue su/sudo to become root, an attacker can easily guess the
length of the root password, by nothing more than counting packets.
When using key-based authentication, better login to root directly.

That has its own dangers. There are numerous reasons to force non-root
login first, but the main reason is tracking: which of the authorized
root users on a system logged in and blew up the system at 4:00 AM
last night? It also makes it easier to cut off one inappropriate or
expired user than to expire the root passwords on all machines that
user has root access to.

On the other hand, if root wipes all data, you can't track anything
anyway, other than on an external logging server, which is shut tight.
If so, you can simply log, which public key has been used for that
particular session. No need for an intermediate login here.

Regards,
E.S.
.

References:
- Password scan
  - From: christian_sava
- Re: Password scan
  - From: Jim Garrison
- Re: Password scan
  - From: Ertugrul Soeylemez
- Re: Password scan
  - From: Nico

Prev by Date: Re: Password scan
Next by Date: Re: Password scan
Previous by thread: Re: Password scan
Next by thread: Re: What is the difference between ftp encryption types SSL, TLS, SFTP and SSH ?
Index(es):
- Date
- Thread

Relevant Pages

Re: Login as root on Fedora Core 9
... Fedora Core 9 although I set the root password and can successfully use it ... Can you login as any other user, and then use "su -" to become root? ...
(Fedora)
Re: cannot login as root
... i have 2 user accounts one is root and othr is ... When i am trying to login as root its displaying following msg "cannot ... passwd ... root password, cause I don't need it - when I have to do sth on root account just log in by `sudo su -`. ...
(alt.os.linux)
Re: [SLE] root access to user
... KDE Control Center/Desktop/Size and Orientation - if the system is ... fully set up at admin level, all the available screen resolutions are ... and root access is not required. ... with or without the root password. ...
(SuSE)
Re: Dumb question of the week.
... run "ifconfig" to check on something with my network ... You cannot run that as a normal user because ... That will make you root with the ability to run programs ... which asks for the root password and then, ...
(alt.os.linux.suse)
Lost access to root
... I was installing a SAP software and during the installation it ... though I was login as root, I must have issued some commands that made ... This is not a root password issue. ...
(comp.unix.solaris)