Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-23 months agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square81fedilinkarrow-up1105arrow-down15file-text
arrow-up1100arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-23 months agomessage-square81fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-square☂️-@lemmy.mllinkfedilinkarrow-up1·edit-23 months agoit is also vulnerable to whatever ssh exploits that can bypass the key
minus-squarex00z@lemmy.worldlinkfedilinkEnglisharrow-up2·3 months agoFinding an exploit in ssh is worth more than whatever your server has to offer though.
minus-square☂️-@lemmy.mllinkfedilinkarrow-up1·edit-23 months agothats a good point. unless you forget to update it in a timely manner. that includes most servers out there ime, so
it is also vulnerable to whatever ssh exploits that can bypass the key
Finding an exploit in ssh is worth more than whatever your server has to offer though.
thats a good point. unless you forget to update it in a timely manner.
that includes most servers out there ime, so