Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
Hello and Welcome from United States to the UNIX and Linux Forums! Thank You for Visiting and Joining Our Global Community.
|
|
google unix.com
|
|||||||
| Forums | Register | Forum Rules | Links | Albums | FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
 |
| AIX AIX is IBM's industry-leading UNIX operating system that meets the demands of applications that businesses rely upon in today's marketplace. |
More UNIX and Linux Forum Topics You Might Find Helpful
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Cannot login root | surizan | HP-UX | 5 | 02-04-2008 11:38 AM |
| Can't login root account due to can't find root shell | neikel | AIX | 2 | 01-30-2008 11:07 PM |
| Root Login Auditing !! | jobbyjoseph | SUN Solaris | 3 | 04-05-2007 10:39 PM |
| root login | breigner | AIX | 2 | 09-16-2004 12:49 PM |
| Lost root password / Can't login as root | Perderabo | Answers to Frequently Asked Questions | 0 | 06-22-2004 07:40 PM |
 |
Powered by 
|
|
|
LinkBack | Thread Tools | Search this Thread | Rate Thread | Display Modes |
03-13-2008
|
||||
|
||||
|
why I cannot login by root
I can use sudo su to root from my user id through ssh. Also can change root password. However, I cannnot login by root from ssh.
Does any body know why? |
|
03-13-2008
|
||||
|
||||
|
Quote:
ShawnMilo |
|
03-13-2008
|
||||
|
||||
|
however, other AIX server I can login by root. I have root password and I can reset root password. When I login by root, it showed "Access denied"
|
|
03-13-2008
|
||||
|
||||
|
I don't know, then. Maybe there's something in one of the config files which regulates that. I've never been able to log in as root via ssh on Linux or the Mac, but I've never used AIX, so take that for what it's worth.
ShawnMilo |
|
03-13-2008
|
||||
|
||||
|
I don't know if this is related... This is for ESX which is a red hat compatible linux.
edit /etc/ssh/sshd_config: add "permitRootLogin yes" perform "/etc/init.d/sshd restart" Actually, this is really not recommended, a security risk, are you former windows administrator who can only think about making a simple life but in return is really the reverse, why don't you just login as regular user then just do su or sudo. itik |
|
03-13-2008
|
||||
|
||||
|
If you are using OpenSSH then sshd_config will regulate users abilities to login.
A workaround is to use keyed access only for root login. This is very convenient and, contrary to other opinions, when well designed is a very attractive solution. Root login via interactive-password is a very bad idea. |
|
03-14-2008
|
||||
|
||||
|
The one possibility (in the ssh config) has already been mentioned. Another possibility would be to (dis-)allow the user root the remote login directly. This is one of the user attributes: check with "lsuser" and if this shows "rlogin=false" change the attribute to "true" by "chuser -a rlogin=true root".
The notion that this poses a security risk is IMHO a misconception. By allowing root to directly login there is no auditing possible any more about who (personally) has logged in. It could be everybody with the root password. If root cannot log in directly the user would have to log in with his normal account and then use "su" to become root. Both events can be logged (/var/adm/wtmp and sulog). Still, to have an event being auditable does not mean enhanced security by itself. It merely means you can blame it to somebody in case something goes wrong. Further, anybody with a root account could alter these logs so that they are unusable. So this is creating a false sense of security which in fact is not provided by these measures. bakunin |
| Sponsored Links | ||
|
|
|
| Bookmarks |
| Tags |
| linux |
| Thread Tools | Search this Thread |
| Display Modes | Rate This Thread |
|
|
Linear Mode
