Abotu setting 'PermitRootLogin=no' in sshd_config

P J P pj.pandit at yahoo.co.in
Fri Nov 21 07:11:27 UTC 2014


Sshd(8) daemon by default allows remote users to login as root.

  1. Is that really necessary?
  2. Lot of users use their systems as root, without even creating a non-root user.
     Such practices need to be discouraged, not allowing remote root login could be
     useful in that.

Does it make sense to disable remote root login by default? If so, do we need to just report it to the maintainer or it would be treated as a feature?


More information about the devel mailing list