joined:July 23, 2005
I'm getting the following warning in my daily rootkit report:
Warning: The SSH and rkhunter configuration options should be the same:
SSH configuration option 'PermitRootLogin': yes
Rkhunter configuration option 'ALLOW_SSH_ROOT_USER': no
As far as I know, this was the default when we installed this server (Debian Squeeze)
One source said the fix would be to change the /etc/ssh/sshd_config and set: PermitRootLogin no
So I'm confused now. If I set PermitRootLogin to no, wouldn't that prohibit my logging into our server (which is in a data farm)? Or does it do something else?
I so, is there a better alternative?