Re: A great answer to dictionary attacks on root
- From: Ignoramus7715 <ignoramus7715@xxxxxxxxxxxxxxxxxxx>
- Date: Wed, 13 Sep 2006 17:28:05 GMT
On Wed, 13 Sep 2006 19:12:04 +0200, Cezary Morga <cezarym@xxxxxxx> wrote:
Ignoramus7715 wrote:
PermitRootLogin without-password
That means that root logons are allowed ONLY with keys. No passworded
logins are allowed as root -- one MUST have a key.
I'd say a PermitRootLogin no would be more secure. After all you can
use su do gain root privileges.
I need to copy some things to that machine that need to be owned by
root, from cron jobs. I need that root logon.
I do not see how it would be more risky to permit keyed root logons,
as ssh keys cannot be guessed like passwords.
If an intruder gets sufficient privileges to get a hold of actual
keys, they would likely be able to find out su passwords, as well.
i
.
- Follow-Ups:
- Re: A great answer to dictionary attacks on root
- From: Cezary Morga
- Re: A great answer to dictionary attacks on root
- From: Steven Mocking
- Re: A great answer to dictionary attacks on root
- References:
- A great answer to dictionary attacks on root
- From: Ignoramus7715
- Re: A great answer to dictionary attacks on root
- From: Cezary Morga
- A great answer to dictionary attacks on root
- Prev by Date: Re: A great answer to dictionary attacks on root
- Next by Date: Re: A great answer to dictionary attacks on root
- Previous by thread: Re: A great answer to dictionary attacks on root
- Next by thread: Re: A great answer to dictionary attacks on root
- Index(es):
