Hello!
I just installed CentOs with "minimal" install option.
Why SSH is accepting by defalut user root to login?
This is a security vulnerability, it should NOT accept logins from the root account by defalut, only from a regular user and then make a su or sudo su, or am I wrong about this?
Why is SSH service starting up by defalut in the " MINIMAL " install scenario?
P.s. I am concerned as I don't wish my system to be hacked, and I like when things are "secure" by defalut.
SSH question
Re: SSH question
Check this out
http://www.howtogeek.com/howto/linux/security-tip-disable-root-ssh-login-on-linux/
http://www.howtogeek.com/howto/linux/security-tip-disable-root-ssh-login-on-linux/
Re: SSH question
http://wiki.centos.org/HowTos/Security
SSH question
Personally, I think this is poor out of the box security for an enterprise linux distribution. With all the SSH brute force attacks going on, you would think that something like this would be disabled by default. Maybe someday Red Hat will see the light.