Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-216 days agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square53fedilinkarrow-up18arrow-down10file-text
arrow-up18arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-216 days agomessage-square53fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-squareSavvyWolf@pawb.sociallinkfedilinkEnglisharrow-up0·15 days agoI don’t think that actually works; the attacker could just remove .bashrc and create a new file with the same name.
minus-square2ndSkin@sh.itjust.workslinkfedilinkarrow-up0arrow-down1·15 days agoIf the .bashrc is immutable, the attacker can’t remove it. That’s how it works.
I don’t think that actually works; the attacker could just remove .bashrc and create a new file with the same name.
If the .bashrc is immutable, the attacker can’t remove it.
That’s how it works.