Subject: Re: sshd Change: PermitRootLogin = no
To: Brian Hechinger <>
From: Kevin Sindhu <>
List: tech-security
Date: 08/31/2001 19:35:28
On Fri, Aug 31, 2001 at 06:46:29PM -0400, Brian Hechinger penned:
> > 	do you really want to change the DEFAULT behavior, or do you happy with
> > 	changing sshd.conf locally?  i don't see your point.  if you believe
> > 	secure shell protocol is secure enough, it should be okay to set
> > 	PermitRootLogin to yes.  if there's any buffer overrun or other
> > 	vulnerability, root privilege will get compromized anyways regardless
> > 	from PermitRootLogin.  what kind of middle ground are you aiming for?
> the middle ground of extreme caution.  you see, for me, it would mean that i
> *don't* have to edit sshd.conf since i turn root login off on all my machines.

Um...if you are takeing a vote, I'd say that I would like the option
of root login disabled in Stock NetBSD OpenSSH.(Its the first thing I
do after an install anyway).

My 2 cents

The will to win is worthless if you don't get paid for it.
		-- Reggie Jackson