Petr Klíma wrote: > John Andersen wrote: > >> I don't think that is a universally accepted setup. The only risk to >> root ssh logins is based on ancient flaws and timing attacks in >> long obsolete versions of ssh. >> > > It has other reason - noone can do successfull dictionary attack on root > account when it's not allowed to login as root. You can try to rule out > this possibility by using strong password, but it might be wiser to > restrict root login from trusted IPs or deny it completely (while using > strong root password of course). > > Tosuja > There's nothing to stop someone from logging in as a user and the su to root. My firewall is configured to allow only RSA key SSH access. There is no password to guess.
-- Use OpenOffice.org <http://www.openoffice.org> -- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
