how to allow user toor login through ssh
Ernie Luzar
luzar722 at gmail.com
Wed Jan 4 01:18:33 UTC 2017
Maciej Suszko wrote:
> On Tue, 3 Jan 2017 19:15:54 +0800
> Ben Woods <woodsb02 at gmail.com> wrote:
>
>> The openssh daemon prevents login as root or toor (any user with UID
>> 0) in the default configuration that ships with FreeBSD.
>>
>> This can be adjusted by setting the following in /etc/ssh/sshd_config:
>> PermitRootLogin yes
>>
>> Note however, that it is not generally advisable to allow root or toor
>> login via ssh, as this is a frequently attempted username for script
>> kiddies and bots running random brute force attacks. Tread wisely.
>>
>> Regards,
>> Ben
>
> However it's quite simple to restrict root login using Match block, for
> example ;-) ... just leave 'no' globally.
>
> Match Address 10.0.0.0/27
> PermitRootLogin yes
I like this solution. On my host I have changed ssh to us a high value
port number back when I was on BSD REL 3.0 and have never had any failed
login attacks of any kind. As the host administrator I am the only one
using ssh on this 11.0 host. Using the ip address of my vacation home is
just an added piece of security.
Thanks for this information.
More information about the freebsd-questions
mailing list