AW: [suse-security] remote login for root?!
Hi, I'm sorry. In fact you are right. Maybe I should have had a look down your mail and notice your sshd config file. Are you using RSA authentication? In that case root login will be ok if RSA succeeds, regardless the value of PermitRootLogin. H THAT h, Oliver -----Ursprüngliche Nachricht----- Von: Andreas Otto [mailto:andreas@noho.co.uk] Gesendet: Mittwoch, 7. März 2001 17:52 An: SuSE-Security Betreff: [suse-security] remote login for root?! Hi , I have always believed that ROOT_LOGIN_REMOTE="no" in /etc/rc.config prevents root from logging in remotely. But a simple: C:\>ssh -l root 192.168.101.99 Password: Last login: Wed Mar 7 15:41:22 2001 from 192.168.101.237 Have a lot of fun... mojox:~ # Tells me that something weird is going on here. Are there any other places I need to check for apart from the two mentioned below? /etc/rc.config: # If you want to allow root logins from other machines, set ROOT_LOGIN_REMOTE # to "yes". # ROOT_LOGIN_REMOTE="no" /etc/ssh/sshd_config: Port 22 #Protocol 2,1 ListenAddress 0.0.0.0 #ListenAddress :: HostKey /etc/ssh/ssh_host_key ServerKeyBits 768 LoginGraceTime 600 KeyRegenerationInterval 3600 PermitRootLogin no # Cheers, Andreas -- Andreas Otto OgilvyInteractive | Floor 2, Canberra House 315 - 317 Regent Street | London W1B 2HS Reception +44 207 299 3434 | Fax +44 207 631 5050 http://www.ogilvy.com --------------------------------------------------------------------- To unsubscribe, e-mail: suse-linux-unsubscribe@suse.com For additional commands, e-mail: suse-linux-help@suse.com --------------------------------------------------------------------- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com
participants (1)
-
Schoenwaelder Oliver