OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: allow access of root user
From: Bill Fumerola (billfchimesnet.com)
Date: Tue Jul 25 2000 - 12:05:17 CDT


On Tue, Jul 25, 2000 at 04:41:03PM +0200, Bart van Leeuwen wrote:
> Uhm, telnetting in as a user and suing to root has exactly the same
> danger, your password goes over the net in plaintext.
>
> If you want to prevent that consider using ssh instead.
> Also note that when using rsh you prevent root from logging in for
> interactive access, but an rsh -l root <machine> <command> will still
> work.

For those who are stupid enough to allow rsh....

> To be honest, I never really saw the point of disallowing this except for
> the simple good habit of never using the root account at all, and only
> becomming superuser when you really really have to.

Jul 25 13:01:50 boa su: billf to root on /dev/ttyp2

That's the #1 reason you don't want several people just logging in
as root.

-- 
Bill Fumerola - Network Architect, BOFH / Chimes, Inc.
                billfchimesnet.com / billfFreeBSD.org

To Unsubscribe: send mail to majordomoFreeBSD.org with "unsubscribe freebsd-security" in the body of the message