[SunHELP] Disable login info:
Sean Holden
sunhelp at sunhelp.org
Fri May 11 14:04:50 CDT 2001
You should never allow any UID 0 account access via telnet. The setup
you described would make it very easy to brute force the root account.
A better solution would be to deploy ssh, disable root logins and only
allow the user to use su to become root. You may also consider
implementing tcp wrappers if you want to restrict access from specific
hosts/networks.
Sean
--- "Pissey, Vinod" <Vinod.Pissey at compaq.com> wrote:
> Hi All,
>
> I wanted to secure my web server.In the process I was just thinking
> whether
> we can remove the login prompt from the telnet session.That is
> whenever any
> user tries to telnet into the machine he should not get the login
> prompt but
> directly the password prompt which should be for the root.
>
> Thanks
> Regards
> Vinod Kumar Pissey
> Compaq Computers
> 14231 Tandem Blvd
> Phone:512-4328761.
> Unix Is User-Friendly.It's just selective about who its friends Are.
>
>
> _______________________________________________
> SunHELP maillist - SunHELP at sunhelp.org
> http://www.sunhelp.org/mailman/listinfo/sunhelp
__________________________________________________
Do You Yahoo!?
Yahoo! Auctions - buy the things you want at great prices
http://auctions.yahoo.com/
More information about the SunHELP
mailing list