Re: root telnet

To: Debian Users List <debian-user@lists.debian.org>
Subject: Re: root telnet
From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk>
Date: Fri, 22 Jan 1999 07:35:35 +0100
Message-id: <[🔎] 19990122073535.A32235@fantomas.sk>
Mail-followup-to: Debian Users List <debian-user@lists.debian.org>
In-reply-to: <[🔎] 19990121171901.B642@nikel.co.uk>; from Nidge Jones on Thu, Jan 21, 1999 at 05:19:01PM +0000
References: <[🔎] 1816.990121@null.net> <[🔎] 19990121155902.F25638@fantomas.sk> <[🔎] 19990121171901.B642@nikel.co.uk>

-> > -> How to make telnetd accept root login ?
-> > 
-> > are you nuts ?
-> > use ssh at least...
-> 
-> If you really must allow root access, after adding the relevent entries to
-> the /etc/securrity file. You *could* then restrict root access to limited 
-> hosts via the /etc/login.access file. (OK I guess you could do this via 
-> hosts.allow/deny too).
-> 
-> In login.access add a line like...
-> 
-> -:root:ALL EXCEPT some.host1 some.other.host LOCAL
-> 
-> That will allow root logins only from local (console) and some.host1 and
-> some.other.host

and I'll recommend to define in sshd.conf:

UseLogin yes

-> Might not be the best way, but better than just allowing root access from
-> anywhere (suicide).

-> Of course you could always login as another user and then 'su -' to root.

That's the preferred way by 9 of 10 sysadmins ;-)


-- 
 Matus "fantomas" Uhlar, sysadmin at Telenor Internet Kosice, Slovakia
 BIC coord for *.sk; admin of netlab.irc.sk; co-admin of irc.felk.cvut.cz
 Silvester Stallone: Father of the RISC concept.

Reply to:

References:
- root telnet
  - From: UF Marpaung <otak@null.net>
- Re: root telnet
  - From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk>
- Re: root telnet
  - From: Nidge Jones <nidge@nikel.co.uk>

Prev by Date: Re: Gnome default dir is /usr/src
Next by Date: debian installation
Previous by thread: Re: root telnet
Next by thread: Re: root telnet
Index(es):
- Date
- Thread