LinuxQuestions.org - SSH Security

- Linux - Security (https://www.linuxquestions.org/questions/linux-security-4/)

- - SSH Security - Anti Root (https://www.linuxquestions.org/questions/linux-security-4/ssh-security-anti-root-413691/)

Swakoo

02-10-2006 12:36 AM

SSH Security - Anti Root

Hi guys,

as we know to secure against root login via sshd,

it can be done by adding "DenyUser root"

Recently I realise there's an option "PermitRootUser" yes/no

What's the diff between the 2?

Capt_Caveman

02-10-2006 01:15 AM

AFAIK, there really isn't a difference in the way you are using it. PermitRootUser is the standard directive used by most people to block root logins and is pretty straight forward (yes/no), though it does accept other options like "without-password". The DenyUser directive is a little more flexible and allows you to do things like specifying "root@somehost".

Swakoo

02-10-2006 04:12 AM

Ooooh

didn't know 'DenyUsers' can be used to specify permission for different source of connection, cool!

Capt_Caveman

02-10-2006 12:21 PM

Checkout the sshd_config man page. It's got a more in depth of explanation of the various things you can filter with.

All times are GMT -5. The time now is 04:49 AM.