For the maximum security, if one has to log in as root
to do maintenance, I would suggest switching to either
runlevel 1 or 2 or whatever runlevel you have set to
bring the network down.
Runlevel 1 or S brings the network and other services
down so you get root access but no chance of a network
invasion, then when through, just telinit 5 or 3 and your
back in business, I would recommend typing:
telinit 5; exit so that it will log out of root shell
so no one can come along and do a ctrl+alt+F1 or
something and bust into your machine, or crack it
from the network.
All other suggestions or input welcome please!
Thanks
