Subject: Re: PermitRootLogin in SSHd (WAS: Re: Telnet logins)
To: Tim Preston <tim@flibble.org>
From: Curt Sampson <cjs@cynic.net>
List: port-i386
Date: 08/21/2001 12:00:45
> On Mon, 20 Aug 2001, Tim Preston wrote:
>
> "login 'root' succeeded from server21.whatever.com" ...and that correlated
> in time with a catastrophic failure of a system service? Do you want to
> go digging through log files because people are cascade sshing from
> machine to machine on your network?
The handy thing about permitting direct root logins is that you can
sdist and rsync system files (e.g., /usr/local upgrade) to a whole bunch
of other machines easily. Is there any way to do this without direct
root logins?
cjs
--
Curt Sampson <cjs@cynic.net> +81 3 5778 0123 http://www.netbsd.org
Don't you know, in this new Dark Age, we're all light. --XTC