It was bound to happen - suspected hack
Dustin Decker
dustin.decker at 1on1security.com
Thu Oct 21 11:20:16 CDT 2004
> -----Original Message-----
> From: kclug-bounces at kclug.org [mailto:kclug-bounces at kclug.org] On Behalf
> Of Brian Kelsay
> Sent: Thursday, October 21, 2004 11:08 AM
> To: kclug at kclug.org
> Subject: Re: It was bound to happen - suspected hack
>
> On some systems you limit the users that can "su" in the sudoers file,
> correct? On Debian and Gentoo, I think, the user must be in the "wheel"
> group to be able to "su root".
>
> Brian Kelsay
>
> >>> "Jon Moss" <> 10/21/04 10:55AM >>>
>
> I thought I could configure ssh to prevent root access (I never login root
> remotely anyway). I will also limit su to a single user.
You can (and should) accomplish this in /etc/ssh/sshd_config via:
PermitRootLogin no
Dustin
More information about the Kclug
mailing list