[H-GEN] iptables autoblocking
Troy Piggins
troy at piggo.com
Thu Jul 21 23:59:54 EDT 2005
* David O'Brien <dob12460 at bigpond.net.au> :
> On Thursday 21 July 2005 07:44, Troy Piggins wrote:
[snip]
> >
> > Firstly, and you hopefully have done this already, is to not
> > permit root to login.
> >
> > Secondly, if it's only you or a couple of user's that use ssh,
> > restrict the allowed users to just those few usernames.
> >
> > /etc/ssh/sshd_config: PermitRootLogin no AllowUsers anthony
>
> I use root to ssh into my linux box at home to do a port redirect
> so I can use xchat/IRC from the office. If I were to change
> PermitRootLogin to no, will that stop that? Sounds like it. It's
> the only way I can use IRC from the office. I need to do it as
> root because a "normal" user can't do port redirects.
Why can't you log in as a normal user, and use sudo or su to root to
achieve your task? You really don't need to actually log in as root
to execute commands as root.
--
Troy Piggins
e : troy at piggo.com
RedHat 9: mutt 1.5.9i, procmail 3.22, postfix 2.2.4, slrn 0.9.8.1,
vim 6.1, kernel 2.4.20-31.9
More information about the General
mailing list