On Tue, 2003-03-11 at 09:23, Bill Carlson wrote: > On Sun, 9 Mar 2003, Mikkel L. Ellertson wrote: > > > I preferrer to set root to "PermitRootLogin without-password" so you can > > only log in with a valid key pair. As long as you have a good password > > on the private key, it makes it hard for anyone to log in. They have to > > get the private key, and crack the password... The only disadvantage is > > that if they do manage to crack your machine, and get your private key, > > the can crack the password on their machine, instead of over the > > Internet. Not a real big problem for me, as the machines with the > > private keys do not accept incomming Internet connections... > > Another benefit: If your password for root gets horked for some reason, > you can still ssh in and fix it without having to boot single user. Not > that I've ever had to do that. *cough* >
me either *cough cough* Now if I could just *ahem* remember the tripwire passphrase on the two new boxes I did I could clean up the reports. Bret -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://listman.redhat.com/mailman/listinfo/redhat-list
