disabling root and olpc passwords
Michael Burns
maburns at gmail.com
Sat Jan 12 21:35:42 EST 2008
On Jan 12, 2008 9:17 PM, Carl-Daniel Hailfinger <
c-d.hailfinger.devel.2006 at gmx.net> wrote:
> On 13.01.2008 01:45, M. Edward (Ed) Borasky wrote:
> > 1. One *never* allows remote shell login as "root" -- *ever* -- even
> > behind a firewall. One allows only *one* user in the "wheel" group to
> > log in to a shell account, and then *only* via "ssh".
>
> Which is almost as unsafe as using "root" directly.
>
Except that massive network scans for root at any-host-that-respond-to-ssh (a
common attack vector) become useless...
--
Michael Burns * Student
Open Source {Education} Lab
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.laptop.org/pipermail/devel/attachments/20080112/96c1fcbd/attachment.html>
More information about the Devel
mailing list