Re: [MLUG] Debian SSH root access keys

Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: MLUG Members <EMAIL:PROTECTED>
Subject: Re: [MLUG] Debian SSH root access keys
From: Mike Miller <EMAIL:PROTECTED>
Date: Thu, 15 May 2008 18:52:38 -0500 (CDT)
Delivery-date: Thu, 15 May 2008 18:52:57 -0500
Envelope-to: EMAIL:PROTECTED
In-reply-to: <EMAIL:PROTECTED>
References: <EMAIL:PROTECTED> <EMAIL:PROTECTED>
Reply-to: MLUG Members <EMAIL:PROTECTED>
Sender: EMAIL:PROTECTED

On Thu, 15 May 2008, Daniel Nowlin wrote:

I know what you mean Mike. I have ran MDK, FC, and not CentOS and I have NEVER let root have ssh access. No need that is what sudo is for. And if you have a lot of root stuff to do and do/can not get to the machine then just su to root. Now I wonder if you ssh in as a user if this vulnerability will work.

Apparently it does work for other users. That's what I'm hearing. Anyway, the thing is, most script kiddies are just going to start attacking root for now. Why mess with a bunch of other possible user names? Maybe when that fails they'll try some other usernames. Meanwhile, boxes are being patched so we're ready.

Mike

_______________________________________________
members mailing list
EMAIL:PROTECTED
http://mlug.missouri.edu/mailman/listinfo/members

Follow-Ups:
- RE: [MLUG] Debian SSH root access keys
  - From: "Nowlin, Dan" <EMAIL:PROTECTED>

References:
- [MLUG] Debian SSH root access keys
  - From: Mike Miller <EMAIL:PROTECTED>
- Re: [MLUG] Debian SSH root access keys
  - From: Daniel Nowlin <EMAIL:PROTECTED>

Prev by Date: Re: [MLUG] Debian SSH root access keys
Next by Date: RE: [MLUG] Debian SSH root access keys
Previous by thread: Re: [MLUG] Debian SSH root access keys
Next by thread: RE: [MLUG] Debian SSH root access keys
Index(es):
- Date
- Thread