um hi On Sun, 2005-04-24 at 18:53 +0800, kylin wrote: > thank u for your advise! but now i am in a very save local network > ,and the su return sorry in my telnet, > so is that mean i have to go to ssh? or can i chage some file to enable it > thank u and best wishes > > On 4/24/05, Roland Smith <[EMAIL PROTECTED]> wrote: > > On Sun, Apr 24, 2005 at 06:09:38PM +0800, kylin wrote: > > > i find it difficult to use root account when i telnet to freebsd 5.3 > > > release , anything need to change? > > > > You're not supposed to log in as root over telnet. It would expose the root > > password to anybody intercepting your IP traffic. > > > > It would be advisable to log in as a normal user via ssh (secure shell) > > and then su to root. Even if your ssh keys were compromised, an attacker > > would only gain access as a normal user. And since all communications > > are encrypted, it would be hard for an listener to get the root password. > > > > Roland > > -- > > R.F. Smith /"\ ASCII Ribbon Campaign > > r s m i t h @ x s 4 a l l . n l \ / No HTML/RTF in e-mail > > http://www.xs4all.nl/~rsmith/ X No Word docs in e-mail > > public key: http://www.keyserver.net / \ Respect for open standards > > > > > > > > Ok, I would advise you to not use telnet to login as root as others have said previously. If you absolutely have to log in has root use secure shell. If you have ssh running already then uncomment and change the "#PermitRootLogin no" line to "PermitRootLogin yes" in your /etc/ssh/sshd_config file and restart secure shell. I tend to change the port that secure shell runs on as well to provide an additional level of security.
_______________________________________________ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
