Root Access
Tom Horsley
tom.horsley at att.net
Sun Jun 14 13:50:23 UTC 2009
On Sun, 14 Jun 2009 09:39:59 -0400
Todd Zullinger wrote:
> A minor nit, but root login is allowed by default in upstream OpenSSH
> (and in the Fedora packages). I disable that on my systems, which I
> think it a good practice.
I use the nifty (relatively) new "Match" sshd_config stuff to disable
root login (and any kind of simple password login for that matter)
from IP addresses outside my local network, so I can still ssh as root
easily inside my firewall, but if I'm coming from outside, I need the
proper long passphrase protected public key and can only login
as a normal user.
More information about the fedora-list
mailing list