manny, the docs that i've seen have stated that the default for sshd is to allow root login... -bruce -----Original Message----- From: fedora-list-bounces@xxxxxxxxxx [mailto:fedora-list-bounces@xxxxxxxxxx]On Behalf Of Manny Sent: Thursday, March 17, 2005 4:47 PM To: For users of Fedora Core releases Subject: sshd_config Was anyone aware that sshd_config default permits root login??? I checked my config and found this too be true. i also ran rkhunter and noticed that ssh was vunerable. I made some changes to my sshd_config and ran rootkit again and all is well. Here's what it looks like now. Can anyone tell me if this looks right??? Protocol 2 SyslogFacility AUTHPRIV PermitRootLogin no AllowUsers kcmanny PasswordAuthentication yes ChallengeResponseAuthentication no GSSAPIAuthentication yes GSSAPICleanupCredentials yes UsePAM yes X11Forwarding yes Subsystem sftp /usr/libexec/openssh/sftp-server -- fedora-list mailing list fedora-list@xxxxxxxxxx To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
