On Wed, 2006-06-14 at 18:56 +0200, M. Fioretti wrote:
> I've read on several howtos that one way to make ssh more secure, or
> at least reduce the damage if somebody breaks in, is to NOT allow
> direct ssh login from root, but allow logins from another user. So you
> have to know two passwords in order to do any real damage.
>
> Does this make sense? IF yes, what is the right way to create an user
> only for this purpose, that is one that can only login to give me a
> local prompt to become root, but has no privilege, no possibility to
> create files, or do anything at all?
Normally you would want people to use their own account for the
initial login - and to use good passwords so a dictionary attack
isn't likely to work.
--
Les Mikesell
lesmikesell@xxxxxxxxx
_______________________________________________
CentOS mailing list
CentOS@xxxxxxxxxx
http://lists.centos.org/mailman/listinfo/centos
Re: [CentOS] How to create a secure user only for ssh login?
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: [CentOS] How to create a secure user only for ssh login?
- From: Les Mikesell <lesmikesell@xxxxxxxxx>
- Date: Wed, 14 Jun 2006 12:38:51 -0500
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <20060614165630.GG4136@xxxxxxxxx>
- References: <20060614165630.GG4136@xxxxxxxxx>
- Follow-Ups:
- Re: [CentOS] How to create a secure user only for ssh login?
- From: M. Fioretti
- Re: [CentOS] How to create a secure user only for ssh login?
- References:
- [CentOS] How to create a secure user only for ssh login?
- From: M. Fioretti
- [CentOS] How to create a secure user only for ssh login?
- Prev by Date: RE: [CentOS] Simple backup program
- Next by Date: Re: [CentOS] Changed md5sums on a bare-bones install. Logical explanation?
- Previous by thread: [CentOS] How to create a secure user only for ssh login?
- Next by thread: Re: [CentOS] How to create a secure user only for ssh login?
- Index(es):
 |