r3046 - in trunk/BOOK: introduction/welcome server/other

dj at linuxfromscratch.org dj at linuxfromscratch.org
Sun Nov 28 02:39:46 PST 2004


Author: dj
Date: 2004-11-28 03:39:45 -0700 (Sun, 28 Nov 2004)
New Revision: 3046

Modified:
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/server/other/openssh.xml
Log:
Added note to disable root login in sshd_config

Modified: trunk/BOOK/introduction/welcome/changelog.xml
===================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml	2004-11-28 10:11:01 UTC (rev 3045)
+++ trunk/BOOK/introduction/welcome/changelog.xml	2004-11-28 10:39:45 UTC (rev 3046)
@@ -26,7 +26,7 @@
 named.conf, corrected IP for B.ROOT-SERVERS.NET and added note about
 Internic's current copy of named.root; updated to Linux-PAM-0.78 and 
 added a note to the Shadow instructions to test the 
-installation.</para></listitem>
+installation; added command to disable root logins with ssh.</para></listitem>
 
 <listitem><para>November 28th, 2004 [randy]: Updated to 
 AbiWord-2.2.0.</para></listitem>

Modified: trunk/BOOK/server/other/openssh.xml
===================================================================
--- trunk/BOOK/server/other/openssh.xml	2004-11-28 10:11:01 UTC (rev 3045)
+++ trunk/BOOK/server/other/openssh.xml	2004-11-28 10:39:45 UTC (rev 3046)
@@ -125,9 +125,15 @@
 
 <para>There are no required changes to either of these files. However,  
 you may wish to view them to make changes for appropriate security to
-your system. Configuration information can be found in the man pages for
+your system. One recomended change is that you disable root login via
+ssh. Execute the following command to disable root login via ssh:</para>
+
+<screen><userinput><command>echo "PermitRootLogin no" >> /etc/ssh/sshd_config</command></userinput></screen>
+
+<para>Additional configuration information can be found in the man pages for
 <command>sshd</command>, <command>ssh</command> and 
 <command>ssh-agent</command></para>
+
 </sect3>
 
 <sect3><title>sshd init.d script</title>




More information about the blfs-book mailing list