I'll probably get flamed for this but... On my boxes I leave root able to SSH, but I also give root a 12 char password from a random-char-gen thingy. Makes it hard to remember/brute force my passwords so I feel OK. I'm also using the latest OpenSSL/OpenSSH so I think my risk of exploit is small. Let the flames begin.
But the question is: Do you want to take that security risk?
Why not just login as normail user (within a 'su group'), and use su to login as root?
It's just one step more, but it's a lot safer.
rgrds,
Bart
smime.p7s
Description: S/MIME Cryptographic Signature
