Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Sun
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: cant block root login

from [Craig Smith] Network Security [Permanent Link]
Subject: RE: cant block root login
Date: Fri, 13 Aug 2004 14:57:59 +0100 
Hi,

OpenSSH will read /etc/default/login if 'UseLogin' is set to 'yes' in
sshd_config.

If a line is commented out it indicates this is the default behaviour,
so you will need to uncomment and change PermitRootLogin to 'No' and
then either restart sshd, or send a kill -1 to the sshd process (make
sure you get the right process id....)

Regards,

Craig.


-----Original Message-----
From: Scott Howard [mailto:scott@sageau.virtual-server.net] On Behalf Of
Scott Howard
Sent: 13 August 2004 14:37
To: Laurence Moughan
Cc: focus-sun@securityfocus.com
Subject: Re: cant block root login


On Tue, Aug 10, 2004 at 11:25:52AM +0100, Laurence Moughan wrote:

I have a pile of solaris 8 machines @ 117000-01
Hardened and running openssh 3.8.1p1
with my /etc/default/login  
CONSOLE=/dev/console


OpenSSH doesn't read /etc/default/login (nor does Solaris 9 SSH,
although Solaris 10 does)


and my sshd_config
#PermitRootLogin yes


OK, so it's commented out and thus the default will be in effect.


However i can still ssh in and remotly login directly as root.


So it sounds like the default value for PermitRootLogin is Yes.


Clues guys ?


Put the following in sshd_config and restart sshd : PermitRootLogin No

  Scott


--------------------------------------------------------------- -
        Visit our Internet site at http://www.reuters.com

Get closer to the financial markets with Reuters Messaging - for more
information and to register, visit http://www.reuters.com/messaging

Any views expressed in this message are those of  the  individual
sender,  except  where  the sender specifically states them to be
the views of Reuters Ltd.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ID 800047 auth.crit] fatal: monitor_read: unsupported request: 24, Robert Escue
Next by Date:  RE: cant block root login, Michele Chubirka
Previous by Thread:  Re: cant block root login, Scott Howard
Next by Thread:  RE: cant block root login, Michele Chubirka
Indexes:  [Date] [Thread] [Top] [All Lists]