Loading
Disabling the Root Account on Your SSH Server
- Fun with ethtool
- Linux-Based X Terminals with XDMCP
- 100% disappointed with the decision to go all digital.
- Readers' Choice Awards 2011
- Parallel Programming with NVIDIA CUDA
- You Need A Budget
- Validate an E-Mail Address with PHP, the Right Way
- The Linux powered LAN Gaming House
- The Linux RAID-1, 4, 5 Code
- Python for Android
- Gnome3 is such a POS. No one
4 hours 56 min ago - Gnome 3 is the biggest POS
5 hours 6 min ago - I didn't knew this thing by
11 hours 10 min ago - Author's reply
14 hours 35 min ago - Link to modlys
15 hours 42 min ago - I use YNAB because of the
15 hours 53 min ago - Search
20 hours 56 min ago - Question
21 hours 19 min ago - for the record
21 hours 22 min ago - That's disappointing. Thanks
23 hours 45 min ago
Comments
opensuse
opensuse has PermitRootLogin yes, *and* they have ssh enabled by default. The firewall has port 22 blocked by default. You can't rely on the firewall to protect anything. If you disable root account on ssh, no amount of brute force will break **that**, but firewalls can be (have been) easily circumvented, in one way, or another.
Since OpenBSD has the slogan "secure by default" shouldn't OpenSSH be "installed secure by default" even on a GNU distro?
opensuse too
Opensuse has open root account for ssh login -- I reported it, and it was closed as wontfix because... "it is secure". Why it is secure? Because ssh is off by default. Thank you very much for such security. Scary :-(
Technical note: I don't care what is trendy now or not, but "video articles" are disaster. They are not searchable, they require more data than text for the same amount of information. They are more difficult to manage. Please stop this, put normal text articles.
Both?
We try to do both video and text. Lots of people enjoy the videos, and learn better by watching/hearing. While I wouldn't expect the video format to replace the standard article -- I like to think of it as a useful addition to our regular content.
Shawn Powers is an Associate Editor for Linux Journal. You might find him chatting on the IRC channel, or Twitter
Disabling the Root Account on Your SSH Server
I wanted (hoped?) to argue with you about the fact that most distros had PermitRootLogin set to "yes", but you are absolutely correct. I verified the setting on vanilla installs of Fedora 10, Mandriva 2009.0, and Ubuntu 9.04. Of the three, only Mandriva had ssh password logins turned off out of the box. Yikes...I'd prefer to see that off by default.
Great tip (and keep 'em coming)!