I want to enable root logins from anywhere. (I know, this is bad, but this is a machine that I care little about, just want to use it to house stuff I need when I am in the field) In the past, I forget now, but I used to add entries to /etc/securetty other than tty[0-9]. I know I can simply remove this file to accomplish what I want but what can I add to this file to allow just 1 remote root login at a time? Thanks Greatly, -Chuck Chuck Carson Sr. Systems Engineer 858.720.5040 ccarson@Change.COM <<...>> -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
If you use SSH, you can do this without overly compromising security (or modifying securetty.) - Herman On Fri, 11 Aug 2000, Chuck Carson wrote: ->> ->>I want to enable root logins from anywhere. (I know, this is bad, but this ->>is a machine that I care little about, just want to use it to house stuff I ->>need when I am in the field) ->> ->>In the past, I forget now, but I used to add entries to /etc/securetty other ->>than tty[0-9]. I know I can simply remove this file to accomplish what I ->>want but what can I add to this file to allow just 1 remote root login at a ->>time? ->> ->>Thanks Greatly, ->>-Chuck ->> ->> ->>Chuck Carson Sr. Systems Engineer ->>858.720.5040 ccarson@Change.COM ->> ->> <<...>> ->> ->> ->>-- ->>To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com ->>For additional commands send e-mail to suse-linux-e-help@suse.com ->>Also check the FAQ at http://www.suse.com/support/faq ->> -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
On Fri, 11 Aug 2000, Herman Knief wrote:
If you use SSH, you can do this without overly compromising security (or modifying securetty.)
That's sound advise... I would even add that you should comment out telnet services from /etc/inetd.conf (ie, use only ssh). Alvaro Novo SuSE 6.3 Kernel 2.2.13 KDE 1.1.2
- Herman
On Fri, 11 Aug 2000, Chuck Carson wrote:
->> ->>I want to enable root logins from anywhere. (I know, this is bad, but this ->>is a machine that I care little about, just want to use it to house stuff I ->>need when I am in the field) ->> ->>In the past, I forget now, but I used to add entries to /etc/securetty other ->>than tty[0-9]. I know I can simply remove this file to accomplish what I ->>want but what can I add to this file to allow just 1 remote root login at a ->>time? ->> ->>Thanks Greatly, ->>-Chuck ->> ->> ->>Chuck Carson Sr. Systems Engineer ->>858.720.5040 ccarson@Change.COM ->> ->> <<...>> ->> ->> ->>-- ->>To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com ->>For additional commands send e-mail to suse-linux-e-help@suse.com ->>Also check the FAQ at http://www.suse.com/support/faq ->>
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
Chuck Carson wrote:
I want to enable root logins from anywhere. (I know, this is bad, but this is a machine that I care little about, just want to use it to house stuff I need when I am in the field)
In the past, I forget now, but I used to add entries to /etc/securetty other than tty[0-9]. I know I can simply remove this file to accomplish what I want but what can I add to this file to allow just 1 remote root login at a time?
I think it was /etc/login.defs. That changed with 6.4, since there was the move to PAM. Have a look into your /etc/rc.config and set: # # If you want to allow root logins from other machines, set ROOT_LOGIN_REMOTE # to "yes". # ROOT_LOGIN_REMOTE="yes" Juergen -- =========================================== __ _ Juergen Braukmann juergen.braukmann@gmx.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu | /\\ /__/ / _ \/ // /\ \/ / ===========================================_\_v __/_/_//_/\_,_/ /_/\_\ -- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
I was under the impression that there was a line in /etc/rc.config that you could edit to enable root logins. As you siad, however, this is a Bad Thing --- having said that, good luck, and happy hunting. --Joey On Sat, 12 Aug 2000, juergen.braukmann@ruhr-west.de wrote:
Chuck Carson wrote:
I want to enable root logins from anywhere. (I know, this is bad, but this is a machine that I care little about, just want to use it to house stuff I need when I am in the field)
In the past, I forget now, but I used to add entries to /etc/securetty other than tty[0-9]. I know I can simply remove this file to accomplish what I want but what can I add to this file to allow just 1 remote root login at a time?
I think it was /etc/login.defs. That changed with 6.4, since there was the move to PAM. Have a look into your /etc/rc.config and set:
# # If you want to allow root logins from other machines, set ROOT_LOGIN_REMOTE # to "yes". # ROOT_LOGIN_REMOTE="yes"
Juergen
-- =========================================== __ _ Juergen Braukmann juergen.braukmann@gmx.de| -o)/ / (_)__ __ ____ __ Tel: 0201-743648 dk4jb@db0qs.#nrw.deu.eu | /\\ /__/ / _ \/ // /\ \/ / ===========================================_\_v __/_/_//_/\_,_/ /_/\_\
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
-- To unsubscribe send e-mail to suse-linux-e-unsubscribe@suse.com For additional commands send e-mail to suse-linux-e-help@suse.com Also check the FAQ at http://www.suse.com/support/faq
participants (5)
-
ccarson@change.com -
herman@knief.net -
juergen.braukmann@ruhr-west.de -
looseduk@ductape.net -
novo@uiuc.edu