But just a another question !!!!
if ssh connection is encrypted (unlike telnet) and i must be root to sometimes important task (adding domain to bind....) and this server is too far from my desktop, why making an ssh connection is unsecure !!!!
If you are on the internet I suggest on your sshd server machine enable firewall and only allow from your desktop pc to access. And subscribe to your vendor mailing list for any security update. If your machine allow root access remotely, people can brute force it.
ssh is considered insecure only if you login directly as root, but if you login as a normal restricted user then su to root, the root password was sent encryped but the restricted password was not so ssh is much more secure as long as the root password is completely different from the restricted user password.
create a regular user 'haneo', add 'haneo' to wheel group ('vi /etc/group' and change wheel root line to wheel root, haneo).
Then you can ssh to your server, login as haneo then 'su -' and get full root login with all the privileges etc. This way, an intruder will have to break into 2 password-protected logins (and I'm sure you don't use 'password' as your password, don't you?)...
This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.