On Sat, 2002-11-09 at 23:49, Werner Puschitz wrote:
>
> Here is what you could do. Set PermitRootLogin to yes and use the
> pam_access.so module to restrict direct root access to the server.
> Add the following pam_access line to /etc/pamd.d/sshd:
> accountrequired /lib/security/pam_acc
On 9 Nov 2002, Bret Hughes wrote:
> On Fri, 2002-11-08 at 12:00, Richard Nghiem wrote:
> > Hello,
> >
> > I have restricted root login to all my machines through ssh by setting
> > "PermitRootLogin no". I do most of my work as root and distribute
> > configs files through scp to the correct pla
On Fri, 2002-11-08 at 12:00, Richard Nghiem wrote:
> Hello,
>
> I have restricted root login to all my machines through ssh by setting
> "PermitRootLogin no". I do most of my work as root and distribute
> configs files through scp to the correct places. Currently I have to su
> -l after I login
This is for accounting purposes. When users login as root you cannot
tell who it was. If my machine is the only one that can login as root
then I know it was either me or a user that had to su to root. Also I
use ssh keys so no passwords are sent from my machine and it makes it
much easier to sp
>On Fri, Nov 08, 2002 at 10:00:58AM -0800, Richard Nghiem wrote:
>>
>> I have restricted root login to all my machines through ssh by setting
>> "PermitRootLogin no". I do most of my work as root and distribute
>> configs files through scp to the correct places. Currently I have to su
>> -l afte
On Fri, Nov 08, 2002 at 10:00:58AM -0800, Richard Nghiem wrote:
>
> I have restricted root login to all my machines through ssh by setting
> "PermitRootLogin no". I do most of my work as root and distribute
> configs files through scp to the correct places. Currently I have to su
> -l after I lo
Hello,
I have restricted root login to all my machines through ssh by setting
"PermitRootLogin no". I do most of my work as root and distribute
configs files through scp to the correct places. Currently I have to su
-l after I login as myself. Is there any way that I can restrict root
logins t