Quote:
Originally posted by mikedeatworld
is it safe to login as root over ssh?
|
yes, as the password is encrypted... but you should still disable the option of root login via ssh for additional security...
when root login via ssh is disabled, you can still become root by using "su" once you log-in to your regular account ...
it's an additional layer of security... even if an attacker actually guesses your correct root password, he'll still get a "permission denied" error just like if the password was wrong... and sshd won't let him know that it's actually denying the login, it'll look to him exactly as if the password was wrong...
if you wanna do this, then the file to edit is
/etc/ssh/sshd_config
just make sure you have this option set:
PermitRootLogin no
good luck...