Hi, don't forget two important advantages of logging in as yourself:
1) You don't always want to be root. Many tasks can be performed as a normal user. You wont screw up your server so easily as a normal user. Maybe you will even have different users for different tasks (useful if you're not the only administrator). 2) If multiple persons access your server, they should log in as normal users. This way you don't have to share the root key and you can identify who logged in when via your logs. Of course you should enforce key-only access for your users. Peter Abrahamsen wrote: > Hi list, > > I'm looking for some opinions for a security decision. I need to > enable remote administrative access to critical systems living about > 3-4 hours from me and in another country. The systems will be running > LAMP, more or less. > > Which is a better idea, allowing key-only root access, or ssh'ing in > as myself and running su/sudo/whatever? Either way, I'll set up > iptables so that connection attempts from anywhere other than my > office are -j DROP'ed. > > Thanks, > > Peter -- Mit freundlichen Grüßen Bastian Ramm -------------------------------------------- COMINTO GmbH Klosterstraße 49 40211 Düsseldorf www.cominto.de eMail: [EMAIL PROTECTED] Tel : 0211 / 6000 16 - 79 Fax: 0211 / 6000 16 - 89 --------------------------------------------
signature.asc
Description: OpenPGP digital signature
