On 16-Jun-99 Rich Derr wrote:
> On Tue, Jun 15, 1999 at 04:59:33PM -0700, [EMAIL PROTECTED] wrote:
> 5. If root can login over telnet then root's password is going out
> in clear text on the network, which any sensible admin would try
> to avoid anyway, so why allow it?
root's password will be going out in plaintext over the network even if you su,
so this isn't really a valid reason. Password sniffing is by far the most
likely way for someone to get in, assuming the passwords are strong.
> Rich Derr, sysadmin Have ssh, Will Telecommute
^^^
The best idea of all, ssh _and_ no root login :) (or any other strongly
encrypted variant).
Richard Waid.
Network Engineer - [EMAIL PROTECTED] - 021 636 661
iOpen Technologies Ltd.
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
