Subject: Re: sshd Change: PermitRootLogin = no
To:, Curt Sampson <>
From: Brian Hechinger <>
List: tech-security
Date: 08/31/2001 08:19:33
On Fri, Aug 31, 2001 at 05:23:47PM +0900, Curt Sampson wrote:
> to have inadvertantly changed that, since ssh's default policy as shipped
> is to allow direct root logins.

i never did understand that.  this is a "security tool" that comes out of the
box in a very insecure configuration.

> In order to bring us back to the state we were in before I've changed
> the default sshd_config file (which is installed as /etc/sshd.conf)
> to have the "PermitRootLogin" option set to "no". From this point on,
> if you use direct root logins from the network via ssh, you will want
> to flip this option back after new installs or re-installs in /etc.

thank you.