[ale] Goofed up root login via console, oops!
Gary S. Mackay
Gary at edisoninfo.com
Tue Nov 23 11:19:48 EST 1999
Well, in my effort to create a very secure firewall/gateway for a client, I
have managed to fix it so 'root' can NOT login via the main console. I can ssh
into the box and 'su -' to root tho, so I know the password is correct.
(That's the message I get at the console, 'invalid password').
I have turned off telnet and almost all other protocols in the inetd.conf
file since this is ONLY a gateway/firewall, not a mail server or samba or
anything else. I have implemented a VERY strong ruleset via ipchains, and
everything is working just fine, except for the fact that I have to admin the
box via the internet since I can not log into it locally! (I know, that's the
plus of linux vs NT, remote admin. But it would be nice to get into the box
locally when I do happen to be on site.) I can log in locally as another user,
but can NOT 'su -' to 'root' from the console, only remotely.
Totally confused? Good, so am I!
- Gary
--
Edison Information Technologies
P.O. Box 554
Milan, OH 44846-0554
419.499.7040
www.EdisonInfo.com
Gary at EdisonInfo.com
--
More information about the Ale
mailing list