Thread: Linux Security References
View Single Post
Old August 13th, 2004, 2:29 AM   #2 (permalink)
Travis
ubuntu Fan
Super #1
 
Travis's Avatar
 
Joined in Nov 2003
Lives in Calgary Alberta Canada
2,724 posts
Gave thanks: 0
Thanked 0 times
Now some ways to protect your server against this

1. Add your main NON user account to the wheel group (Make sure they have a ssh account)
2. Locate your sshd config file (normaly /etc/ssh/sshd_config)
3. Edit your sshd file ("# pico /etc/ssh/sshd_config")
4. Uncomment out the protocol and delete the ,1
5. At the bottom add:
PermitRootLogin no
AllowUsers user1 user2 user3
6. To login to root you now must "# ssh theuseryouaddedtothewheelgroup[at]youripaddress"
Once logged into that account you "# su root" and enter your password and your now logged into root!

Note #1: Now when getting support from surpass you must tell them to login to your wheel group user and switch to root.

Note #2: If you feel uncomfortable doing this yourself get Surpass to do it for you.

Massive props to nokiaxv2 for this!


A link of intrest for your sshd config:
http://www.openbsd.org/cgi-bin/man.c...penBSD+Current
__________________
"A lot of people are waiting for Martin Luther King or Mahatma Gandhi to come back -- but they are gone. We are it. It is up to us. It is up to you."
— Marian Wright Edelman
Travis is offline   Reply With Quote