Re: PermitRootLogin=yes versus su
From: Ian Gregory (i.h.gregory@herts.ac.uk)
Date: 01/26/03
- Next message: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Previous message: Neil W Rickert: "Re: PermitRootLogin=yes versus su"
- In reply to: Bill Lewis Clark: "PermitRootLogin=yes versus su"
- Next in thread: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Reply: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: Ian Gregory <i.h.gregory@herts.ac.uk> Date: 26 Jan 2003 18:25:00 GMT
Bill Lewis Clark wrote:
> A long-standing pet peeve of mine is the nearly universal belief that
> remote root logins via SSH are somehow less secure than connecting as
> a regular user and using su to become root.
> Can anyone come up with some GOOD reasons to prefer su to direct root
> logins?
I think you have missed the point slightly. There are those of us
who would advise NEVER logging in to a system as root, even locally
(and not su'ing to root either for that matter).
OK, so you have to get root when you first set up the sytem in order
to run visudo and set up your sudoers file but after that you can
forget about root unless you need to boot the system single user.
All admin can be done using sudo to get UID 0.
Given that you don't allow local logins as root, why should you allow
them via ssh?
- Next message: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Previous message: Neil W Rickert: "Re: PermitRootLogin=yes versus su"
- In reply to: Bill Lewis Clark: "PermitRootLogin=yes versus su"
- Next in thread: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Reply: Bill Unruh: "Re: PermitRootLogin=yes versus su"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
