Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

ROOT-access and SSH-login

0 views
Skip to first unread message

picas...@gmx.net

unread,
May 28, 1999, 3:00:00 AM5/28/99
to
Hello!

I have two questions. I were very happy, if somebody could help me!

RedHat Linux 6.0

Current situation:
*Normally root has no login-access (except console)

How to setup these things?:
*root access only for one machine (cs2, eth2, 192.168.2.1) in the
local network and no other!
*e-mail client (on cs2, and only on cs2) should have access to root's
mail over POP3 (other accounts access are ok, ipop3d is running).

Current situation:
*SSH (Secure Shell) connection is not possible...

How can I enable:
*SSH for all users

I tried various things... but could not solve these two problems.

Thank you in advance!
Sincerely
Erkan

PS: If you reply, please write a copy to my e-mail-address, too...

Nicholas E Couchman

unread,
May 28, 1999, 3:00:00 AM5/28/99
to
Remote logins (meaning that you are not sitting at the console), are
disabled for user ids under 10. Since the root user id is 0, remote
access for the root user is not allowed. I don't believe there is anyway
to change this. You can, if you know the root password, do the
following:
1)Login in using a normal userid
2)type the command : 'su root'
3)you will be prompted for the root password. Enter the password and you
are given root permissions. This means you can install, uninstall, start
/sbin programs, do everything the root can do, except check the root
email. You have to be sitting at the console logged in as root to read
and check root email.
I hope this helps!!
--Nick

picas...@gmx.net

unread,
May 28, 1999, 3:00:00 AM5/28/99
to
On Fri, 28 May 1999 21:39:42 GMT, Nicholas E Couchman
<snic...@geocities.com> wrote:

>Remote logins (meaning that you are not sitting at the console), are
>disabled for user ids under 10. Since the root user id is 0, remote
>access for the root user is not allowed. I don't believe there is anyway
>to change this. You can, if you know the root password, do the
>following:
>1)Login in using a normal userid
>2)type the command : 'su root'
>3)you will be prompted for the root password. Enter the password and you
>are given root permissions. This means you can install, uninstall, start
>/sbin programs, do everything the root can do, except check the root
>email. You have to be sitting at the console logged in as root to read
>and check root email.

I can remember the old S.u.S.e 5.2 times... There was directly
remote login for root possible! (I think it was the entry pty* in
/etc/securetty - but I'm not sure...)

What the problem is:
*root access should permitted only for a specific host
*mail clients cannot login as a user and perform su, cause of
pop3

I think there must be a way...

Thanx for your readiness to help!
Erkan

Juergen Leising

unread,
May 29, 1999, 3:00:00 AM5/29/99
to
On Fri, 28 May 1999 23:22:48 GMT, picas...@gmx.net <picas...@gmx.net> wrote:

(...)


>
>What the problem is:
>*root access should permitted only for a specific host
>*mail clients cannot login as a user and perform su, cause of
> pop3
>
>I think there must be a way...

ssh is it - compare /etc/sshd_conf (for ssh version 1.x) resp.
/etc/ssh2/sshd_conf (for ssh version 2.x):

(...)
PermitRootLogin yes
(...)
AllowHosts localhost, foobar.com, friendly.org
DenyHosts evil.org, aol.com
(...)

Have a look at

http://www.ssh.fi/

Most recent version is ssh-2.0.13. Main advantage of ssh is:
Passwords are transferred in an encrypted way! This is important due to
sniffers and similar things.

You login in your remote computer (comp.org) by

ssh comp.org

or if you want to use a login name differen from your actual login name:

ssh -l your_remote_name comp.org

The remote computer has to run sshd; ssh version 2 can talk to sshd version 1
(downwards compatible).

Bye, Juergen.

--
*****************************************************************
* Juergen Leising, E-Mail: juergen...@stud.uni-bayreuth.de *
* http://www.stud.uni-bayreuth.de/~a0037/ *
*****************************************************************

K.A. Steensma

unread,
May 29, 1999, 3:00:00 AM5/29/99
to
By typing just : su root
you do get root access but you can not do everything as if you were sitting
at the console. I beleive that the proper command would be : su-
It is not necessary to add the username 'root' as that is exactly (and only)
what the command is used for on a Linux system. The same thing happens (you
are asked for the root password), but you do inherit all the 'goodies' of the
root account. KAS

Nicholas E Couchman wrote:

> Remote logins (meaning that you are not sitting at the console), are
> disabled for user ids under 10. Since the root user id is 0, remote
> access for the root user is not allowed. I don't believe there is anyway
> to change this. You can, if you know the root password, do the
> following:
> 1)Login in using a normal userid
> 2)type the command : 'su root'
> 3)you will be prompted for the root password. Enter the password and you
> are given root permissions. This means you can install, uninstall, start
> /sbin programs, do everything the root can do, except check the root
> email. You have to be sitting at the console logged in as root to read
> and check root email.

Santi Juanico

unread,
Jun 7, 1999, 3:00:00 AM6/7/99
to

Hello, if you want to check root's E-mail from another computer, you can
redirect root's e-mail to a user acount in /etc/aliases.


--
Santi Juanico
sa...@telyse.net

0 new messages