Koozali.org: home of the SME Server
  1. Koozali.org: home of the SME Server
  2. Obsolete Releases
  3. SME Server 7.x
  4. Topic: SSH logins
« previous next »
Pages: [1]   Go Down

SSH logins

  • 2 Replies
  • 1311 Views

Offline uniqsys

  • *
  • 133
  • +0/-0
SSH logins
« on: August 26, 2006, 04:41:03 AM »
Hi all,
I have a question the answer to which may help me understand the 7.0 changes to SSH.  Please help if you can.

Under 6.0 I use to login via SSH using a created user, not root.  Then once logged in I would su to root.  By doing so I thought it a "best practice" to maintain good security levels.  I did not enable command line access in the remote access panel of Server Manager -didn't need to.  All worked well.

Under 7.0 I tried to set up a similar access and get "access denied" when I try to login as a non-root user (but still in the admin group).  However, I am able to login as root only if I enable command line access in Server Manager.  I have even tried after editing passwd and changing the access under the user account from /usr/bin/rssh to /usr/bin/bash.

Could someone help explain to me this behaviour and how I can re-establish my former practice?  I would like to continue my "old" practice if I could.  I thought I understood this but obviously that is not the case.

Thanks.
Logged
...

Offline cactus

  • *
  • 4,880
  • +3/-0
    • http://www.snetram.nl
Re: SSH logins
« Reply #1 on: August 26, 2006, 11:13:02 AM »
Quote from: "uniqsys"
Hi all,
I have a question the answer to which may help me understand the 7.0 changes to SSH.  Please help if you can.

Under 6.0 I use to login via SSH using a created user, not root.  Then once logged in I would su to root.  By doing so I thought it a "best practice" to maintain good security levels.  I did not enable command line access in the remote access panel of Server Manager -didn't need to.  All worked well.

Under 7.0 I tried to set up a similar access and get "access denied" when I try to login as a non-root user (but still in the admin group).  However, I am able to login as root only if I enable command line access in Server Manager.  I have even tried after editing passwd and changing the access under the user account from /usr/bin/rssh to /usr/bin/bash.

Could someone help explain to me this behaviour and how I can re-establish my former practice?  I would like to continue my "old" practice if I could.  I thought I understood this but obviously that is not the case.

Thanks.
Try the dungog remote user access panel, and maybe also read up on SSH using authorized keys by Ian Wells
Logged
Be careful whose advice you buy, but be patient with those who supply it. Advice is a form of nostalgia, dispensing it is a way of fishing the past from the disposal, wiping it off, painting over the ugly parts and recycling it for more than its worth ~ Baz Luhrmann - Everybody's Free (To Wear Sunscreen)

frond

Re: SSH logins
« Reply #2 on: August 27, 2006, 03:13:07 PM »
uniqsys

Search bugzilla on ssh best practise.
Gordon Rowell has a good post there.
Logged
Pages: [1]   Go Up
« previous next »
  1. Koozali.org: home of the SME Server
  2. Obsolete Releases
  3. SME Server 7.x
  4. Topic: SSH logins