[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Re: ssh
- From: "Allie D." <df_(_at_)_drainfade_(_dot_)_com>
- Date: Tue, 17 May 2005 15:50:53 -0700 (PDT)
Why don't you deny root login within ssh, login as a regular user and su ?
Seems pretty simple with no mess ;) You can use the venerable sudo as well
if you'd like..painlessly. I agree with your theory on using shared
accounts...it's bad juju's.
PGP Public key:
Roy Morris said:
> Bob Beck wrote:
>>>>What part of the words "Do *NOT* login as root" have you failed to
>> this is crap. logging in as root is not a sin. we recently
>>removed this poopoo advice from OpenBSD anyway. See my rant about
>>this in the archives.
> You would think from an audit point of view,
> logging in using a a shared account like root would be
> not all that smart. Well is may be poopoo advice, it
> remains good practice to not use shared accounts.