b.n. wrote:
Michael Hentsch ha scritto:
The file /etc/sudoers should always be edited with visudo. visudo uses
file locking, provides basic sanity checks and checks for parse errors.
This always made me crazy.
Why, why, why should I use a specialized editor to edit a system file?
It's not lik
Am Montag 09 Februar 2009 14:15:35 schrieb Nikos Chantziaras:
> Heiko Wundram wrote:
> > Am Montag 09 Februar 2009 13:37:31 schrieb Nikos Chantziaras:
> >> Stroller wrote:
> >>> I install sudo, give my user wide sudo rights and then set
> >>> "PermitRootLogin no" in /etc/ssh/sshd_config.
> >>> (Cri
Stroller wrote:
On 9 Feb 2009, at 13:05, Heiko Wundram wrote:
... even when he gets access to one of
your user accounts (who happen to be in group wheel), he still has to
guess
the root password (when doing su -) to be able to become root, and
hopefully
this buys you the time to see in your l
On 9 Feb 2009, at 13:05, Heiko Wundram wrote:
... even when he gets access to one of
your user accounts (who happen to be in group wheel), he still has
to guess
the root password (when doing su -) to be able to become root, and
hopefully
this buys you the time to see in your logs that someon
Saphirus Sage wrote:
I'd just as soon leave the root account able to be logged in over SSH
and remove password authentication in preference of a 2048-bit RSA key.
Just use a script to add failed logins to a deny list.
I tend to forget that this isn't Debian, so yeah, that'll work ;D
On Feb 9, 2009, at 8:15 AM, Nikos Chantziaras wrote:
Heiko Wundram wrote:
Am Montag 09 Februar 2009 13:37:31 schrieb Nikos Chantziaras:
Stroller wrote:
I install sudo, give my user wide sudo rights and then set
"PermitRootLogin no" in /etc/ssh/sshd_config.
(Critique of this measure welcome
Heiko Wundram wrote:
Am Montag 09 Februar 2009 13:37:31 schrieb Nikos Chantziaras:
Stroller wrote:
I install sudo, give my user wide sudo rights and then set
"PermitRootLogin no" in /etc/ssh/sshd_config.
(Critique of this measure welcomed).
Since Hung already answered about the other problem,
Am Montag 09 Februar 2009 13:37:31 schrieb Nikos Chantziaras:
> Stroller wrote:
> > I install sudo, give my user wide sudo rights and then set
> > "PermitRootLogin no" in /etc/ssh/sshd_config.
> > (Critique of this measure welcomed).
>
> Since Hung already answered about the other problem, I'll jus
Stroller wrote:
I install sudo, give my user wide sudo rights and then set
"PermitRootLogin no" in /etc/ssh/sshd_config.
(Critique of this measure welcomed).
Since Hung already answered about the other problem, I'll just comment
on this.
It's a bad idea if the machine is open to the Interne
9 matches
Mail list logo
