Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
ssh - root user
- Thread starter holdahl
- Start date
Maybe you could just restrict the root access to a speficic (and empty) directory using chroot as a workaround ...
This would mean that the root user would still be able to login but could'nt do any harm because
a) he would be unable to leave the directory
b) you can also prevent him from using any command (cd, ls, rm, mkdir, e.g.)
Regards
Thomas
This would mean that the root user would still be able to login but could'nt do any harm because
a) he would be unable to leave the directory
b) you can also prevent him from using any command (cd, ls, rm, mkdir, e.g.)
Regards
Thomas
my advice is that if you intend to restrict remote login to root via ssh then you need to restrict scp as well or there isn't much point in it.
scp can be used to undo most any restrictions you put in, if you start trying to get clever with keeping root from an interactive usable shell you could also end up with some undesired and unintended consequences. either lock remote root or dont.
scp data as a regular user and chown/move/whatever as root if youu must.
scp can be used to undo most any restrictions you put in, if you start trying to get clever with keeping root from an interactive usable shell you could also end up with some undesired and unintended consequences. either lock remote root or dont.
scp data as a regular user and chown/move/whatever as root if youu must.
- Status