Re: how to root can not login...

mw_4 · ‎06-01-2003

Hi all

login problem..
I have ALZZA Linux on an i686.
I want to know how to block to login from root.
How many ways are there?
Any good tips are enough...

Step by step

Bill Douglass · ‎06-01-2003

/etc/securetty defines which terminals root can log in from. If you want to restrict root to logging in from the system console (and it's generally a good idea to let root in on the console) then put

console

in the file. Delete any other entries, and root is restricted to that login only.

Also, you can restrict root from logging in via ssh by putting the following line in /etc/ssh/sshd_config:

PermitRootLogin no

mw_4 · ‎06-01-2003

sorry..
root can still login.
securetty file has console
[root@ecdev /root]# cat /etc/securetty
console
what's wrong?

Step by step

Vitaly Karasik_1 · ‎06-01-2003

are you asking about blocking remote root's login or local login?

mw_4 · ‎06-01-2003

I'm asking remote's root login

Step by step

Vitaly Karasik_1 · ‎06-01-2003

Hm... For remote telnet login

/etc/securetty does its job usually....

can you please send us your securetty?

Vitaly

mw_4 · ‎06-02-2003

[root@ecdev /root]# cat /etc/securetty
console

Step by step

Vitaly Karasik_1 · ‎06-02-2003

what is ALZZA linux?

Do you have /etc/pam.d/login file and

auth required pam_securetty.so

inside?

Bill Douglass · ‎06-02-2003

OK, what version of alzza linux are you running?

How is root logging in (telnet, ssh, rlogin)

What does the man page for securetty tell you (it should be short, so you can post the contents in your reply)

mw_4 · ‎06-02-2003

of course..
[root@ecdev pam.d]# cat login
#%PAM-1.0
#auth required /lib/security/pam_securetty.so
auth required /lib/security/pam_pwdb.so shadow nullok
auth required /lib/security/pam_nologin.so
account required /lib/security/pam_pwdb.so
account #required /lib/security/pam_access.so
password required /lib/security/pam_cracklib.so
password required /lib/security/pam_pwdb.so nullok use_authtok md5 shadow
session required /lib/security/pam_pwdb.so
session required /lib/security/pam_limits.so
session optional /lib/security/pam_console.so

it has the line #auth required /lib/security/pam_securetty.so
after uncommeted the line,
remote login(root) can not login...
thanks
Vitaly..
all of tips are helpful..

Step by step

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: how to root can not login...

how to root can not login...