16 Jan
2003
16 Jan
'03
10:34
* Volker Kuhlmann wrote on Thu, Jan 16, 2003 at 21:13 +1300:
In fact you should disable remote login for root via password (and maybe even with ssh key), and only allow a normal user to get root using su.
Selecting permissions "paranoid" breaks this, as it removes the suid bit from su, thus preventing any normal user to su to root. A quick edit to /etc/permissions.paranoid fixes that.
I think it's nice to make SSH logins possible by key only, and having no (human) users on the machines if possible :) I trust more in a SSH key than in su :) oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.