On Tuesday 02 March 2004 01:27, HOLLOW, CHRISTOPHER wrote:
> > This arrangement is only to facilitate Administor's job.  He operates
> > outside contact as 'user' from there if necessary he can login as root
> > doing maintenance.
>
> Granting the person root access is one thing.  Allowing root logins via
> SSH is something different.  What Nathan (and security experts around
> the world) is suggesting is to restrict root access vis SSH, have the
> remote user log in as a non-priveleged user and 'su' to root.  Just good
> security practice...

Hi Chris,

Tks for your advice.

I agree with your point.  In most cases the Adminstrator will do the other way 
around.  Login as 'root' for maintenance.  When in need to contact outside he 
login as 'user' via SSH starting email software.  This is the point of house 
keeping

Another point of interest to me in re remote access to 'root' via SSH, an 
Adminstrator can do adminstration job from a remote station.  If the job 
requires rebooting the PC under maintenance with a password then can the 
Adminstrator overcome this difficulty.  This point remains pending unsolved 
to me.

B.R.
Stephen

_______________________________________________
[EMAIL PROTECTED] mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-questions
To unsubscribe, send any mail to "[EMAIL PROTECTED]"

Reply via email to