467604 – Root access from remote SSH client

Bug 467604 - Root access from remote SSH client

Summary: Root access from remote SSH client

Keywords:
Status:	CLOSED DUPLICATE of bug 89216
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	openssh
Sub Component:
Version:	5.4
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Tomas Mraz
QA Contact:	BaseOS QE
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2008-10-19 07:50 UTC by Andrew
Modified:	2008-10-19 16:00 UTC (History)
CC List:	0 users
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2008-10-19 16:00:17 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description Andrew 2008-10-19 07:50:44 UTC

I find it is extremely hard to believe Red Hat enables this feature by default. It is not because of security paranoia, but it is simply critical, very bad practice and should be avoided at all cost. The best practice of course is to allow ssh access from unprivileged users only, and then if needed, he can su to become root.

Comment 1 Tomas Mraz 2008-10-19 16:00:17 UTC


*** This bug has been marked as a duplicate of bug 89216 ***

Note You need to log in before you can comment on or make changes to this bug.