Subject: Re: sshd Change: PermitRootLogin = no
To: firstname.lastname@example.org, Curt Sampson <email@example.com>
From: Brian Hechinger <firstname.lastname@example.org>
Date: 08/31/2001 08:19:33
On Fri, Aug 31, 2001 at 05:23:47PM +0900, Curt Sampson wrote:
> to have inadvertantly changed that, since ssh's default policy as shipped
> is to allow direct root logins.
i never did understand that. this is a "security tool" that comes out of the
box in a very insecure configuration.
> In order to bring us back to the state we were in before I've changed
> the default sshd_config file (which is installed as /etc/sshd.conf)
> to have the "PermitRootLogin" option set to "no". From this point on,
> if you use direct root logins from the network via ssh, you will want
> to flip this option back after new installs or re-installs in /etc.