Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-21 month agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square81fedilinkarrow-up1106arrow-down14file-text
arrow-up1102arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-21 month agomessage-square81fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-square☂️-@lemmy.mllinkfedilinkarrow-up1·edit-21 month agoit is also vulnerable to whatever ssh exploits that can bypass the key
minus-squarex00z@lemmy.worldlinkfedilinkEnglisharrow-up2·1 month agoFinding an exploit in ssh is worth more than whatever your server has to offer though.
minus-square☂️-@lemmy.mllinkfedilinkarrow-up1·edit-21 month agothats a good point. unless you forget to update it in a timely manner. that includes most servers out there ime, so
it is also vulnerable to whatever ssh exploits that can bypass the key
Finding an exploit in ssh is worth more than whatever your server has to offer though.
thats a good point. unless you forget to update it in a timely manner.
that includes most servers out there ime, so