DragonFly users List (threaded) for 2006-10
[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]

Re: Problem with ssh connection

From:	Matthew Dillon <dillon@xxxxxxxxxxxxxxxxxxxx>
Date:	Wed, 25 Oct 2006 11:45:15 -0700 (PDT)

:Matthew Dillon wrote:
:>     ...for that matter, you can give
:>     root a blank password (so no password is required at all), but only allow
:>     passworded logins on the console.  This is what I do...
:
:Do you mean that *anyone* who walks up to your console
:can log in as root?  Am I misunderstanding you?

    If your console is marked as being secure in /etc/ttys, yes.  You don't
    have to mark it as secure.  I suppose in a large machine room that many
    people have access to you wouldn't want to do that, or if you are
    running your consoles into terminal servers.  But you can still have a
    blank password to allow wheel to 'su' to root in those situations
    and simply require that the person on the console (if not marked secure)
    login as themselves and then su.  At least then you have a record of
    whos account was used to access root.

    For most situations there is no point having a password associated
    with root... it won't be any more secure then not having a password
    at all.

					-Matt
					Matthew Dillon 
					<dillon@xxxxxxxxxxxxx>

Follow-Ups:
- Re: Problem with ssh connection
  - From: Pieter Dumon

References:
- Problem with ssh connection
  - From: Saverio Iacovelli
- Re: Problem with ssh connection
  - From: Victor Balada Diaz
- Re: Problem with ssh connection
  - From: Matthew Dillon
- Re: Problem with ssh connection
  - From: David Cuthbert
- Re: Problem with ssh connection
  - From: Vladimir Mitiouchev
- Re: Problem with ssh connection
  - From: Oliver Fromme
- Re: Problem with ssh connection
  - From: Matthew Dillon
- Re: Problem with ssh connection
  - From: walt

[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index][Thread Index]