https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119426#M74900 We are using the telnet as the login tools in the system , could suggest what can i do to disable this function ? thx. Fri, 14 Nov 2003 22:01:16 GMT eric_204 2003-11-14T22:01:16Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119419#M74893 My RH 7 system don't access user to directly login as root on the remote desktop - root user need to login as general user and then su as root , could suggest how to disable this function so that root user can login as root in any desktop ? thx Fri, 14 Nov 2003 08:17:01 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119419#M74893 eric_204 2003-11-14T08:17:01Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119420#M74894 Add pts/1 ....pts/10 and so in /etc/securetty for the root use to be able to login remotely or use ssh with PermitRootLogin yes set in sshd_config. This requires you to bounce sshd. <BR /><BR />HTH <BR />-Madhu<BR /> Fri, 14 Nov 2003 08:35:15 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119420#M74894 Madhu Sudhan_1 2003-11-14T08:35:15Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119421#M74895 That's part of a normal security process. You should always log in as user, su - root, and then perform admin actions, such as login to remote desktops.<BR />Two solutions :<BR />- upgrade (kidding :]] )<BR />- Add these lines to /etc/securetty:<BR />0<BR />1<BR />2<BR />3<BR />4<BR />5<BR />6<BR />7<BR />8<BR />9<BR />It should work. If not, post the exact error message...<BR /><BR />hth<BR /><BR />J Fri, 14 Nov 2003 08:38:00 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119421#M74895 Jerome Henry 2003-11-14T08:38:00Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119422#M74896 thx reply, but i can't find the pts in /etc/securetty , can suggest other solution ? thx. Fri, 14 Nov 2003 08:38:04 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119422#M74896 eric_204 2003-11-14T08:38:04Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119423#M74897 Just remove /etc/securetty if you are not too worried about the issues. Fri, 14 Nov 2003 08:41:37 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119423#M74897 Mark Grant 2003-11-14T08:41:37Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119424#M74898 You could maintain the security, issue the user a normal user id.<BR /><BR />After login, su - root<BR />give the root password.<BR /><BR />SEP Fri, 14 Nov 2003 09:54:02 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119424#M74898 Steven E. Protter 2003-11-14T09:54:02Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119425#M74899 my /etc/securetty like the below , just remove the file or just remove one of entry ? thx<BR /><BR />vc/1<BR />vc/2<BR />vc/3<BR />vc/4<BR />vc/5<BR />vc/6<BR />vc/7<BR />vc/8<BR />vc/9<BR />vc/10<BR />vc/11<BR />tty1<BR />tty2<BR />tty3<BR />tty4<BR />tty5<BR />tty6<BR />tty7<BR />tty8<BR />tty9<BR />tty10<BR />tty11<BR />rsh<BR />rlogin Fri, 14 Nov 2003 20:30:27 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119425#M74899 eric_204 2003-11-14T20:30:27Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119426#M74900 We are using the telnet as the login tools in the system , could suggest what can i do to disable this function ? thx. Fri, 14 Nov 2003 22:01:16 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119426#M74900 eric_204 2003-11-14T22:01:16Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119427#M74901 eric, just mv the file to a different name (so that you can move it back if you want). Sat, 15 Nov 2003 07:32:16 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119427#M74901 Mark Grant 2003-11-15T07:32:16Z https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119428#M74902 Better use ssh.<BR />To disable telnet, go to /etc/xinetd.d/, edit telnet, and set disable to yes.<BR />Better do the same for rlogin too.<BR /><BR />J Sat, 15 Nov 2003 08:21:05 GMT https://community.hpe.com/t5/operating-system-linux/root-login/m-p/3119428#M74902 Jerome Henry 2003-11-15T08:21:05Z