Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-213 days agoWhy disable ssh login with root on a server if I only log in with keys, not password?message-squaremessage-square60fedilinkarrow-up171arrow-down14file-text
arrow-up167arrow-down1message-squareWhy disable ssh login with root on a server if I only log in with keys, not password?Sandal6823@sh.itjust.works to Linux@lemmy.ml · edit-213 days agomessage-square60fedilinkfile-text
On a server I have a public key auth only for root account. Is there any point of logging in with a different account?
minus-squaredeadbeef79000@lemmy.nzlinkfedilinkarrow-up14arrow-down1·12 days agoThat server’s root access is now vulnerable to a compromise of the systems that have the private key.
minus-squareBCsven@lemmy.calinkfedilinkarrow-up1·12 days agoOnly the server should have the private key. Why would other systems have the private key?
That server’s root access is now vulnerable to a compromise of the systems that have the private key.
Only the server should have the private key. Why would other systems have the private key?