*BSD News Article 97742


Return to BSD News archive

Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!news.mel.connect.com.au!news.syd.connect.com.au!news.bri.connect.com.au!corolla.OntheNet.com.au!not-for-mail
From: Tony Griffiths <tonyg@OntheNet.com.au>
Newsgroups: comp.unix.bsd.freebsd.misc
Subject: Re: Root Access
Date: Sat, 14 Jun 1997 12:10:11 +1000
Organization: On the Net (ISP on the Gold Coast, Australia)
Lines: 22
Message-ID: <33A1FD83.4D94@OntheNet.com.au>
References: <33A0DBC3.3098@v-m.com>
Reply-To: tonyg@OntheNet.com.au
NNTP-Posting-Host: swanee.nt.com.au
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailer: Mozilla 3.0 (WinNT; I)
To: marcin@v-m.com
Xref: euryale.cc.adfa.oz.au comp.unix.bsd.freebsd.misc:42951

Marcin Pasek wrote:
> 
> I would like to be able to access my freeBSD server from outside..How do
> I unable Root access from the outside using Telnet...

This is _NOT_ advisable (direct login as root!)...

You should setup a non-privileged account and then either-

(a) use skeys to login as a privileged user

or

(b) su - root

The second option requires that the initial login account also be in the
'wheel' group.  It also means that cleartext passwords are passed across
the 'net.  The first option is more secure as it allows a local system
to generate the unique key for the privileged login so even if someone
is sniffing they won't get privileged access to your system!

Tony