|
Full Disclosure
mailing list archives
Re: Re: Re: Any update on SSH brute force attempts?
From: Barrie Dempster <barrie () reboot-robot net>
Date: Mon, 18 Oct 2004 15:39:39 +0100
On Mon, 2004-10-18 at 14:01 +0100, Dave Ewart wrote:
Well yes, that's fair enough - however, allowing direct root access does
make certain things more straightforward, automated use of 'scp' etc.
Yeh, but theres only a select few people crazy enough to scp files into
places that require root access.
People that fall into the more sane side of security use less error
prone methods of updating configurations (which is what I'm guessing
your using scp here for). There are very few valid reasons to have
direct remote root access (so few I can't currently think of a one)
remote admin tasks can be carried out by means other than login in
directly as root.
--
Barrie Dempster (zeedo) - Fortiter et Strenue
http://www.bsrf.org.uk
[ gpg --recv-keys --keyserver www.keyserver.net 0x96025FD0 ]
Attachment:
signature.asc
Description: This is a digitally signed message part
 By Date 
By Thread
Current thread:
Re: Any update on SSH brute force attempts? Miriam Chan (Oct 23)
Re: Any update on SSH brute force attempts? Jay Libove (Oct 24)
| 
Intro
