Deny root remote login help | Unix Linux Forums | Solaris

  Go Back    


Solaris The Solaris Operating System, usually known simply as Solaris, is a Unix-based operating system introduced by Sun Microsystems. The Solaris OS is now owned by Oracle.

Deny root remote login help

Solaris


Closed Thread    
 
Thread Tools Search this Thread Display Modes
    #1  
Old 02-02-2007
gonzotonka gonzotonka is offline
Registered User
 
Join Date: Nov 2004
Last Activity: 6 October 2010, 4:56 PM EDT
Location: Kentucky
Posts: 19
Thanks: 0
Thanked 0 Times in 0 Posts
Deny root remote login help

I'm attempting to deny a user's ability to login as root through any remote means - ie telnet or ssh. I've read most of the threads that I can find on this site and I've looked at BigAdmin on Sun's site. I have done what has been suggested here and on BigAdmin which is to make sure that the line in the /etc/default/login file (CONSOLE=/dev/console) is uncommented. However, I'm still able to remotely login to my machine through telnet and/or ssh. I have changed the file to both commented and uncommented and rebooted serveral times. Nothing seems to alter the behavior. Are there any other config files or conditions that might allow this activity?

I'm running Solaris 5.8 on a V240 Sun server.

Thanks.
Sponsored Links
    #2  
Old 02-02-2007
Perderabo's Avatar
Perderabo Perderabo is offline Forum Staff  
Unix Daemon (Administrator Emeritus)
 
Join Date: Aug 2001
Last Activity: 15 September 2014, 1:02 PM EDT
Location: Ashburn, Virginia
Posts: 9,925
Thanks: 60
Thanked 434 Times in 259 Posts
"However, I'm still able to remotely login to my machine through telnet and/or ssh."
What is that supposed to mean? The change you made should have fixed telnet. Did it? For ssh, put a DenyUsers line in sshd-config. Do a "man sshd-config" for details.
Sponsored Links
    #3  
Old 02-02-2007
pressy's Avatar
pressy pressy is offline Forum Advisor  
solaris cultist
 
Join Date: Aug 2003
Last Activity: 12 March 2014, 9:56 AM EDT
Location: Vienna / Austria (Europe) [EARTH]
Posts: 732
Thanks: 1
Thanked 2 Times in 2 Posts
telnet should be done with /etc/default/login, "# If CONSOLE is set, root can only login on that device." The ssh has its own config file, /etc/ssh/sshd_config , change that line to no "PermitRootLogin yes" and restart your sshd.

gP
    #4  
Old 02-02-2007
gonzotonka gonzotonka is offline
Registered User
 
Join Date: Nov 2004
Last Activity: 6 October 2010, 4:56 PM EDT
Location: Kentucky
Posts: 19
Thanks: 0
Thanked 0 Times in 0 Posts
Thanks guys. I was getting confused between the two (ssh and telnet). I thought that the /etc/default/login file controlled both daemons. I changed the sshd_config file and it stopped ssh and /etc/default/login stopped the telnets.
Sponsored Links
    #5  
Old 11-04-2008
sourav_ray sourav_ray is offline
Registered User
 
Join Date: Oct 2008
Last Activity: 4 November 2008, 3:41 AM EST
Posts: 2
Thanks: 0
Thanked 0 Times in 0 Posts
vi /etc/ssh/sshd_config

change .... " permit root login no(make it yes)

then svcadm restart svc:/network.ssh
Sponsored Links
    #6  
Old 11-04-2008
incredible incredible is offline Forum Advisor  
Registered User
 
Join Date: May 2008
Last Activity: 24 August 2014, 5:15 AM EDT
Location: SINGAPORE.. The "FINE" City
Posts: 2,693
Thanks: 1
Thanked 19 Times in 19 Posts
Quote:
Originally Posted by sourav_ray View Post
vi /etc/ssh/sshd_config

change .... " permit root login no(make it yes)

then svcadm restart svc:/network.ssh
svcadm does not work for Solaris 8
And gonzotonka , if you want to disable all users from using ssh/telnet/ftp, you might want to look into the /etc/services or /etc/inetd.conf file to comment out the lines with such services enabled and restart your inetd daemon
Sponsored Links
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
how to login with ssh to remote system with out applying the remote root/usr password tv.praveenkumar Solaris 2 11-02-2010 10:13 AM
Remote ssh login as root BG_JrAdmin Solaris 14 08-15-2008 05:58 PM
Problems with disabling remote root login veccinho AIX 3 11-19-2007 11:02 AM
Deny root rlogin funksen AIX 4 01-25-2007 09:49 AM
deny ssh from root - how to? theDirtiest UNIX for Dummies Questions & Answers 3 11-17-2001 11:33 AM



All times are GMT -4. The time now is 05:25 AM.