* Marco van Beek wrote on Tue, Apr 24, 2001 at 19:50 +0100:
I have found that using the PermitRootLogin setting in YaST2 doesn't seem to work. I have emailed support about it and am awaiting a reply. It seems to be happy to add in the line when the setting is "yes",
Maybe this line is twice in that /etc/rc.config file (you change the first but the seconds counts). That may happen since rc.config is just a Shell script and semantic checks like double options are not done. Otherwise try to edit it by hand ($EDITOR - not $HAND :)).
Or maybe I am just going quietly mad. I ended up having to downgrade the security settings from paranoid to secure because it became pretty much impossible to get into the box and do anything.
I though that's what "paraniod" mode is for? To made some things pretty much impossible...
Getting into the box via sshd is no problem, and using "sudo command" rather than "su root" means you don't have to disclose the root password to administrators, plus what they do is usually caught by the logs.
Are you just afraid of the password? Then use ssh-Key authorization. This is more nice (and more secure, since 2048 bits [please no entrophy flame here I know it's an RSA key :)] are harder to guess than 8 letters :) ) Useing SSH enables X11 forwarding, usage of the ssh-agent and other nice features.
You should also be able to use "sudo rxvt" over ssh to get a secure root X session as well, after logging in as a user.
It should be possible to alias su="ssh root@localhost" :) SSH is the better way I thing, since agents keep the key usable (remote, too) and so on. Just nice :) oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.