Les Ault wrote:
> On 05/09/11 15:18, Steven Buehler wrote:
>> I am trying to setup our servers to only allow logins with a
>> public/private key pair. 2 of our machines have to have root login
>> access with ssh and the rest, we will login as another account and su
to root.
<snip>
>> open up the firewall to allow ssh access from anywhere, I can ssh to
>> root without a password. The only uncommented lines in the
>> /etc/ssh/sshd_config are the following:
>>
>> [snip]
>
> Change / uncomment PermitRootLogin with a value of without-password
Yep, and yes, the meaning of the directive is *very* counter-intuitive.
mark
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
