Bug 467604

Summary: Root access from remote SSH client
Product: Red Hat Enterprise Linux 5 Reporter: Andrew <bomber98547>
Component: opensshAssignee: Tomas Mraz <tmraz>
Status: CLOSED DUPLICATE QA Contact: BaseOS QE <qe-baseos-auto>
Severity: medium Docs Contact:
Priority: medium    
Version: 5.4   
Target Milestone: rc   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-10-19 16:00:17 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Andrew 2008-10-19 07:50:44 UTC 
I find it is extremely hard to believe Red Hat enables this feature by default. It is not because of security paranoia, but it is simply critical, very bad practice and should be avoided at all cost. The best practice of course is to allow ssh access from unprivileged users only, and then if needed, he can su to become root.
Comment 1 Tomas Mraz 2008-10-19 16:00:17 UTC 

*** This bug has been marked as a duplicate of bug 89216 ***