BLU Discuss list archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Discuss] PSA: no root login for SSH
- Subject: [Discuss] PSA: no root login for SSH
- From: dbarrett at blazemonger.com (Daniel Barrett)
- Date: Wed, 23 Dec 2020 12:21:09 -0500
- References: <2899a131-7a46-8da5-387e-2b1ae69e94bd@mattgillen.net>
On December 22, 2020, Matthew Gillen wrote: >Seeing as how root has 10 times the hits of the next biggest target, >if you're not set up with some sort of MFA this is why it can be a >good idea to set the "PermitRootLogin no" option in your sshd config. This may be obvious, but... setting "PasswordAuthentication no" is also a good idea to protect against ALL password-based logins -- root's or otherwise. If sshd permits only (say) PubkeyAuthentication, then attackers can't log in unless they have stolen the necessary private key and decrypted its (hopefully very strong) passphrase. -- Dan Barrett dbarrett at blazemonger.com
- Follow-Ups:
- [Discuss] PSA: no root login for SSH
- From: richard.pieri at gmail.com (Rich Pieri)
- [Discuss] PSA: no root login for SSH
- References:
- [Discuss] PSA: no root login for SSH
- From: me at mattgillen.net (Matthew Gillen)
- [Discuss] PSA: no root login for SSH
- Prev by Date: [Discuss] PSA: no root login for SSH
- Next by Date: [Discuss] PSA: no root login for SSH
- Previous by thread: [Discuss] PSA: no root login for SSH
- Next by thread: [Discuss] PSA: no root login for SSH
- Index(es):