[CentOS] How to create a secure user only for ssh login?
Les Mikesell
lesmikesell at gmail.com
Wed Jun 14 17:38:51 UTC 2006
On Wed, 2006-06-14 at 18:56 +0200, M. Fioretti wrote:
> I've read on several howtos that one way to make ssh more secure, or
> at least reduce the damage if somebody breaks in, is to NOT allow
> direct ssh login from root, but allow logins from another user. So you
> have to know two passwords in order to do any real damage.
>
> Does this make sense? IF yes, what is the right way to create an user
> only for this purpose, that is one that can only login to give me a
> local prompt to become root, but has no privilege, no possibility to
> create files, or do anything at all?
Normally you would want people to use their own account for the
initial login - and to use good passwords so a dictionary attack
isn't likely to work.
--
Les Mikesell
lesmikesell at gmail.com
More information about the CentOS
mailing list