Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-29 days agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square81fedilinkarrow-up1104arrow-down14file-text
arrow-up1100arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-29 days agomessage-square81fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-squaremiss_demeanour@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up4arrow-down1·edit-29 days agoAs root: # chattr +i /home/ShortN0te/.bashrc Anything else?
minus-squareShortN0te@lemmy.mllinkfedilinkarrow-up4arrow-down4·9 days agoThere are many ways to harden against it, but “just disable root auth” is not really it, since it in itself does not add much.
minus-squaremiss_demeanour@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up5arrow-down2·9 days ago?? Seriously - if you’re “advising” on linux best practices, get lots of liability insurance.
minus-square2ndSkin@sh.itjust.workslinkfedilinkarrow-up5arrow-down2·9 days agoSo, you learned about .bashrc today, and you’re now an expert? Perhaps stand down and let the experts have their say.
As root:
Anything else?
There are many ways to harden against it, but “just disable root auth” is not really it, since it in itself does not add much.
??
Seriously - if you’re “advising” on linux best practices, get lots of liability insurance.
So, you learned about .bashrc today, and you’re now an expert?
Perhaps stand down and let the experts have their say.