On 01/20/2003 03:59 PM, Mario Ohnewald wrote:
I keep reading that it is unsecure to log in directly as root. To use su should be the choise. But why??
If you are local to the machine, it gives you a measure of protection against accidentals and your own stupidity. You su to root only to accomplish specific tasks, therefore less chance of the ...oops. If you mean remotely, since anyone only needs a user name and password to access your computer through whatever means you allow (say ssh, etc), if you allow remote root logins, well you have given them a sure fire user name, and if your password is not well chosen, then a password/dictionary etc. attack would seem quite a bit easier. HTH. :-) -- Joe Morris New Tribes Mission Email Address: Joe_Morris@ntm.org Web Address: http://www.mydestiny.net/~joe_morris Registered Linux user 231871 God said, I AM that I AM. I say, by the grace of God, I am what I am.