11-19-2007
Quote:
Originally Posted by
veccinho
- after installation of openSSH i edited sshd_config - uncommented line: PermitRootLogin yes
Don't you want to change that to "no"?
10 More Discussions You Might Find Interesting
1. SCO
Hy,
Coud someone tell me how to disable root login via terminal (only from console should be allowed).
There is no ssh installed, only telnet.
I created a user which will have permission to su to root, but now i don't know where and what to modify to disable root login?
SCO OpenServer 5
... (1 Reply)
Discussion started by: veccinho
1 Replies
2. Solaris
I edited my /etc/default/login file and commented the line:
# If CONSOLE is set, root can only login on that device.
# Comment this line out to allow remote login by root.
#
#CONSOLE=/dev/console
I still cant login thru telnet or ssh.
What else do i have to do to be able to login... (14 Replies)
Discussion started by: BG_JrAdmin
14 Replies
3. AIX
Hi,
I want to disable telnet login for root only so that other users can telnet?
Regards,
Manoj (8 Replies)
Discussion started by: manoj.solaris
8 Replies
4. SCO
dear all,
pls give the sollution to disable root login from telnet directly.but it should allow while we type su command (2 Replies)
Discussion started by: prakrithi
2 Replies
5. Solaris
I'm attempting to deny a user's ability to login as root through any remote means - ie telnet or ssh. I've read most of the threads that I can find on this site and I've looked at BigAdmin on Sun's site. I have done what has been suggested here and on BigAdmin which is to make sure that the line... (5 Replies)
Discussion started by: gonzotonka
5 Replies
6. UNIX for Dummies Questions & Answers
we don't have root in our /etc/ftpd/ftpusers and we are getting some pushback from the external auditors about this - specifically as a security risk if a "sniffer" were to catch roots password at the ftp.
What do most shops do - disable ftp for root?
What do you do to get things to the... (3 Replies)
Discussion started by: LisaS
3 Replies
7. UNIX for Dummies Questions & Answers
Hi All,
I have setup a non root user on AIX 5.3, using smit. When I try logging on as that user my login screen just disappears. I am using PUTTY. I login to the same box as root no problems. I have tried re-creating several different usernames but get the same effect I have also telneted from a... (2 Replies)
Discussion started by: hansul
2 Replies
8. Solaris
how to login with ssh to remote system with out applying the remote root/user password
with rlogin we can ujse .rhosts file
but with ssh howits possible
plz guide (2 Replies)
Discussion started by: tv.praveenkumar
2 Replies
9. AIX
I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account
I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Discussion started by: majd_ece
5 Replies
10. UNIX for Advanced & Expert Users
Hi,
As part of the security hardening activity in our team, we have to disable CBC mode cipher encryption, and enable CTR or GCM cipher mode encryption.
To do this, in sshd_config I comment out these lines :
Ciphers aes128-cbc,blowfish-cbc,3des-cbc
MACS hmac-sha1,hmac-md5
and add... (9 Replies)
Discussion started by: anaigini45
9 Replies
LEARN ABOUT ULTRIX
rlogin
rlogin(1c) rlogin(1c)
Name
rlogin - remote login
Syntax
rlogin rhost [-ec] [-8] [-L] [-l username]
rhost [-ec] [-8] [-L] [-l username]
Description
The command connects your terminal on the current local host system, lhost, to the remote host system, rhost.
Each host has a file which contains a list of rhosts with which it shares account names. The host names must be the standard names as
described in When you use the command to login as the same user on an equivalent host, you do not need to specify a password.
You can also have a private equivalence list in a file .rhosts in your login directory. Each line in this file should contain the rhost
name and a username separated by a space, giving additional cases where logins without passwords are permitted. If the originating user is
not equivalent to the remote user, then the remote system prompts for a login and password as in
To avoid security problems, the .rhosts file must be owned by either the remote user or root and it may not be a symbolic link.
Your remote terminal type is the same as your local terminal type, which is specified by your environment TERM variable. Except for
delays, all echoing takes place at the remote site so the rlogin is transparent. Flow control by and <CTRL/Q>, and flushing of input and
output on interrupts are handled properly. The optional argument -8 allows an eight-bit input data path at all times. Otherwise, parity
bits are stripped except when the remote site's stop and start characters are other than and <CTRL/Q>. A tilde followed by a dot (~.) on a
separate line disconnects from the remote host, where the tilde (~) is the escape character. Similarly, a tilde followed by <CTRL/Z> (~
<CTRL/Z>), where is the suspend character, suspends the rlogin session.
Substitution of the delayed-suspend character, which is normally <CTRL/Y>, for the suspend character suspends the send portion of the
rlogin, but allows output from the remote system. A different escape character may be specified by the -e option. There is no space sepa-
rating this option flag and the argument character.
Options
-8 Allows an 8-bit input data path at all times.
-ec Uses the specified character as the escape character. If not specified, uses a tilde (~).
-l username Logs you in as the specified user, not as your user login name.
-L Runs session in litout mode.
Files
/usr/hosts/* for rhost version of the command
See Also
rsh(1c)
rlogin(1c)