Manny kcmanny at
Fri Mar 18 00:46:55 UTC 2005

Was anyone aware that sshd_config default permits root login??? I
checked my config and found this too be true. i also ran rkhunter and
noticed that ssh was vunerable. I made some changes to my sshd_config
and ran rootkit again and all is well. Here's what it looks like now.
Can anyone tell me if this looks right???

Protocol 2
SyslogFacility AUTHPRIV
PermitRootLogin no
AllowUsers      kcmanny
PasswordAuthentication yes
ChallengeResponseAuthentication no
GSSAPIAuthentication yes
GSSAPICleanupCredentials yes
UsePAM yes
X11Forwarding yes
Subsystem       sftp    /usr/libexec/openssh/sftp-server

More information about the users mailing list