Mailinglist Archive: opensuse (2876 mails)
| < Previous | Next > |
Re: [opensuse] RKHunter reports possible infection
- From: James Knott <james.knott@xxxxxxxxxx>
- Date: Mon, 28 May 2007 07:55:52 -0400
- Message-id: <465AC348.1010401@xxxxxxxxxx>
Petr Klíma wrote:
> John Andersen wrote:
>
>> I don't think that is a universally accepted setup. The only risk to
>> root ssh logins is based on ancient flaws and timing attacks in
>> long obsolete versions of ssh.
>>
>
> It has other reason - noone can do successfull dictionary attack on root
> account when it's not allowed to login as root. You can try to rule out
> this possibility by using strong password, but it might be wiser to
> restrict root login from trusted IPs or deny it completely (while using
> strong root password of course).
>
> Tosuja
>
There's nothing to stop someone from logging in as a user and the su to
root. My firewall is configured to allow only RSA key SSH access.
There is no password to guess.
--
Use OpenOffice.org <http://www.openoffice.org>
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
> John Andersen wrote:
>
>> I don't think that is a universally accepted setup. The only risk to
>> root ssh logins is based on ancient flaws and timing attacks in
>> long obsolete versions of ssh.
>>
>
> It has other reason - noone can do successfull dictionary attack on root
> account when it's not allowed to login as root. You can try to rule out
> this possibility by using strong password, but it might be wiser to
> restrict root login from trusted IPs or deny it completely (while using
> strong root password of course).
>
> Tosuja
>
There's nothing to stop someone from logging in as a user and the su to
root. My firewall is configured to allow only RSA key SSH access.
There is no password to guess.
--
Use OpenOffice.org <http://www.openoffice.org>
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
| < Previous | Next > |