@dmmfix But tha'st just the same as guessing the password _with a few letters tacked onto the beginning_, no? It's not materially different.
So, is there a reason not to allow SSH as root if the root password is cryptographically secure, or is it only if you assume that it isn't?
-
-
This Tweet is unavailable.
-
- Show replies
-
-
-
@cmuratori forcing to log as non root leaves a better trace of who logged in before sudoing -
@mmustapic Yeah, on a multiuser system, that seems like a legitimate reason...
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.