Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revision | |
| en:refdref:gmvm:ubuntu-22.04.1 [2024/05/01 10:59] – Webmaster VitaNetworks | en:refdref:gmvm:ubuntu-22.04.1 [2024/05/02 04:12] (current) – Webmaster VitaNetworks |
|---|
| - ''ssh remotesys 'dnf -y certbot*''' starts an installation\\ | - ''ssh remotesys 'dnf -y certbot*''' starts an installation\\ |
| - ''ssh remotesys 'cat /etc/passwd' > "$HOME/Desktop/passwd-copy"'' dumps the contents of a remote system's system in a file on the desktop of the local system\\ | - ''ssh remotesys 'cat /etc/passwd' > "$HOME/Desktop/passwd-copy"'' dumps the contents of a remote system's system in a file on the desktop of the local system\\ |
| | |
| | ==== 2. Modifications of sshd ===== |
| | |
| | - Acceptance of password authentication for superuser (password login using ''root'') |
| | In ''/etc/ssh/sshd_config'', line 33: |
| | From: |
| | <code> |
| | # Authentication: |
| | |
| | #LoginGraceTime 2m |
| | #PermitRootLogin prohibit-password |
| | </code> |
| | |
| | To: |
| | <code> |
| | # Authentication: |
| | |
| | #LoginGraceTime 2m |
| | #PermitRootLogin prohibit-password |
| | PermitRootLogin yes |
| | </code> |
| | |
| | Explanation/reasoning:\\ |
| | - ''#PermitRootLogin prohibit-password'' or __nothing__ is the default; meaning root cannot log in directly i.e. ''ssh root@host'' would fail and the user certainly wouldn't be able to run administrative tasks remotely e.g. ''ssh root@host reboot''. They can, however, log in with another account and elevate themselves once in.\\ |
| | - ''PermitRootLogin prohibit-password'' allows root to log in directly using types of authentication other than passwords like Kerberos, but often this would be key authentication.\\ |
| | - ''PermitRootLogin yes'' is self-explanatory.\\ |
| | |
| |
| ===== Admin Notes ===== | ===== Admin Notes ===== |