This arrangement is only to facilitate Administor's job. He operates outside contact as 'user' from there if necessary he can login as root doing maintenance.


Granting the person root access is one thing. Allowing root logins via SSH is something different. What Nathan (and security experts around the world) is suggesting is to restrict root access vis SSH, have the remote user log in as a non-priveleged user and 'su' to root. Just good security practice...

Chris


Stephen Liu wrote:


- snip -


You say that this works as root, but your example seems to indicate
otherwise.  By default, root logins via ssh is disabled in the sshd
config file, usually at /etc/ssh/sshd_config.  If for some reason you
want to allow root logins via ssh then uncomment the following line and
change "no" to "yes" - then restart sshd:

PermitRootLogin yes

However, I think this would generally be frowned upon from a security
standpoint.



Hi Nathan,


Tks for your advice which works.

This arrangement is only to facilitate Administor's job. He operates outside contact as 'user' from there if necessary he can login as root doing maintenance.

B.R.
Stephen

_______________________________________________
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"





--


Christopher Hollow - Consultant
Infrastructure & Technology Support
Toronto, ON


_______________________________________________ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to