Re: [Cooker] openssh-server (no root login)

[Leon Brooks]

Alexander Skwar wrote:

> Uhm, and why is it more secure for someone to telnet into a
> machine and then su to root?

Attacker needs to know two passwords and one username to do serious 
damage. Of course, this is ssh rather than telnet that we're discussing, 
so there is little possibility of packet-sniffing the passwords. If the 
traffic is sniffable then no amount of obfuscation is going to help you 
much.