Re: PermitRootLogin enabled by default

To: Debian-Security <debian-security@lists.debian.org>
Subject: Re: PermitRootLogin enabled by default
From: Sebastian Rittau <srittau@jroger.in-berlin.de>
Date: Wed, 26 Jun 2002 16:39:37 +0200
Message-id: <[🔎] 20020626143936.GB5564@jroger.in-berlin.de>
Mail-followup-to: Debian-Security <debian-security@lists.debian.org>
In-reply-to: <[🔎] 1025093461.508.17.camel@adelita>
References: <[🔎] 1025093461.508.17.camel@adelita>

On Wed, Jun 26, 2002 at 02:11:00PM +0200, InfoEmergencias - Luis Gómez wrote:

> IMHO, we'd better set it to no. I always thought it was much better. Is
> there any landscape in which you may want to allow direct root login to
> your host?

Yes, there is. For example I have some servers that retrieve their user
information from a database. If the database is not reachable, an
ordinary user can't login, but root can, since it's the only local
account with login privileges.

But then this is a special case that doesn't require root logins enabled
by default. On the other hand I don't see why allowing direct root
logins is a problem.

 - Sebastian

-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: PermitRootLogin enabled by default
  - From: InfoEmergencias - Luis Gómez <lgomez@infoemergencias.com>
- Re: PermitRootLogin enabled by default
  - From: Tim Haynes <debian@stirfried.vegetable.org.uk>

References:
- PermitRootLogin enabled by default
  - From: InfoEmergencias - Luis Gómez <lgomez@infoemergencias.com>

Prev by Date: Re: PermitRootLogin enabled by default
Next by Date: Re: PermitRootLogin enabled by default
Previous by thread: Re: PermitRootLogin enabled by default
Next by thread: Re: PermitRootLogin enabled by default
Index(es):
- Date
- Thread