Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-21 year agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square38fedilinkarrow-up145arrow-down13file-text
arrow-up142arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-21 year agomessage-square38fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-squareJasonDJ@lemmy.ziplinkfedilinkarrow-up1·1 year agoNah just set up PAM to use TOTP or a third party MFA service to send a push to your phone for sudo privs.
minus-squaremiss_demeanour@lemmy.dbzer0.comlinkfedilinkEnglisharrow-up1·1 year ago…and if you don’t have your phone attached to your hand…?
minus-squareJasonDJ@lemmy.ziplinkfedilinkarrow-up1·edit-21 year agoI…I don’t understand the question. Also, yubikey or any other token. Plenty of MFA options compatible with sudo.
Nah just set up PAM to use TOTP or a third party MFA service to send a push to your phone for sudo privs.
…and if you don’t have your phone attached to your hand…?
I…I don’t understand the question.
Also, yubikey or any other token. Plenty of MFA options compatible with sudo.