ssh - NO SALE or NO GIVE ?
Markus Friedl
Markus.Friedl at informatik.uni-erlangen.de
Tue May 22 00:04:05 EST 2001
On Mon, May 21, 2001 at 04:51:22PM +0300, Pekka Savola wrote:
> There is a significant difference related to _account management_ here;
> I'm sure you can see it. :-)
i can see what you want. however, i still think that nobody
should ever login as root. the root account should never be
used at all. you can use su/sudo if you need privileges.
you should never use the root account do do any work. just
kill/start or cp files.
it happens much more often that general accounts are added
then privileged accounts are removed. so you need to update
the userdata-base on a regualar basis anyway.
if you want to lock out people fast, put them into a unix
group and add a DenyGroup or AllowGroup to sshd_config
More information about the openssh-unix-dev
mailing list