Was anyone aware that sshd_config default permits root login??? I checked my config and found this too be true. i also ran rkhunter and noticed that ssh was vunerable. I made some changes to my sshd_config and ran rootkit again and all is well. Here's what it looks like now. Can anyone tell me if this looks right??? Protocol 2 SyslogFacility AUTHPRIV PermitRootLogin no AllowUsers kcmanny PasswordAuthentication yes ChallengeResponseAuthentication no GSSAPIAuthentication yes GSSAPICleanupCredentials yes UsePAM yes X11Forwarding yes Subsystem sftp /usr/libexec/openssh/sftp-server
