SSH with root access, help

[AndrzejL]

You can gain root privs while logged to ssh. Log in as normal user and then use su to gain root.

Logging in as root <directly> is a serious security risk. Its the only sure login in the system and if it was not blocked it could be used to bruteforce the root's password...

Oh and yes... I am serious...

Cracking SSH

Andy

[Wolfeh]

You can gain root privs while logged to ssh. Log in as normal user and then use su to gain root.

Logging in as root <directly> is a serious security risk. Its the only sure login in the system and if it was not blocked it could be used to bruteforce the root's password...

I'm quite aware of the risk.  Considering that there is nothing of any real importance to be gained by hacking, I'm not too worried about it.  Add onto that the fact that it's within a LAN and I can control where external requests for port 22 will go, then it's even less of a worry.  If someone were to manage to gain access, then they'd basically have accomplished nothing.  It's not the primary O.S., I don't have any sensitive data on it nor available to it, the password for root is different than the password for other things and (don't kill me anyone) I primarily use pclos to have some sort of Linux OS available to me for fiddling, testing and toying purposes.

Put simply, it's like if someone were to steal a cardboard box out of the backyard.  Yes, the thief broke the law, but they gained practically nothing in return.

Oh and yes... I am serious...

That video is a joke.  As soon as he used his own password list, I was thinking, "Well of course it's going to work now, because he's included a list that will certainly have the password in it."  Even others have commented on that fact.  


Now if you want to find me a video that shows a program that can crack the password for a backup file generated by Paragon Partition Manager 10.0 Server, that would indeed be useful.  I thought I remembered the password for my backup files but it keeps rejecting the passwords I try to use. 

[AndrzejL]

I'm quite aware of the risk.  Considering that there is nothing of any real importance to be gained by hacking, I'm not too worried about it.

I am not even gonna read further... Ok I will... I can't resist...

A) You can become spam bot
B) You can become rogue internet irc bot
C) You can become DDoS attacker
D) You can become a part of a criminal activity...
E) You can become dodgy http server with dangerous scripting
F) MUCH much more...

su is the recommended way of gaining root. Root logins are not recommended. If You want to do this - You need to be more advanced then You are and You need to learn. First of all - learn about consequences of what might happen.

Video is not a joke. Video was a perfect example... Example... is the keyword. Its not as easy to crack the password if You dont know it but the fact is that if You leave ssh on port 22 then there are several attacks a day. Check /var/log/auth.log file for all the failed password attempts for all the different logins that You dont even have setup on Your computer.

Btw... If someone hacks Your machine and uses it to attack bank... Guess where the authorities will come to search for the attacker...

Btw 2... Network security is tough from outside... its soft inside the network. If someone hacks Your lan machine then have much easier job hacking Your other lan machines. Chain is just as strong as its weakest link.

Oh don't get me started Dude... But Youre probably right - I am paranoid...

To get what You want check the file... /etc/ssh/denyusers...

Andy

P.S. Here is how to change the port from 22 and prepare firewall for it.

[Wolfeh]

I'm quite aware of the risk.  Considering that there is nothing of any real importance to be gained by hacking, I'm not too worried about it.

I am not even gonna read further...

You really should read further.

[AndrzejL]

I did and edited the post above

Andy

[Wolfeh]

Btw 2... Network security is tough from outside... its soft inside the network. If someone hacks Your lan machine then have much easier job hacking Your other lan machines. Chain is just as strong as its weakest link.

The routers configuration is inaccessible outside of the LAN.  Someone would have to hack in first to gain access to the router.  In order to do that, they have to configure the router to allow them the ability to gain access to one of the computers.

Oh don't get me started Dude... But Youre probably right - I am paranoid...

I don't think you're paranoid.  I just believe that in my situation, I'm at a much lower risk for something happening.  Mind you, this is with what I know about my setup and such.  No, I won't give details on it, because that would defeat the purpose of the security.

P.S. Here is how to change the port from 22 and prepare firewall for it.

If I prevent port 22 from coming in at all from outside the LAN, then there's no need to change it.  I know how to send someone on a wild goose chase.  Thanks for offering the information, but the help I seek (aside from the Paragon password cracker in a previous post) is in figuring out the reason for the extreme delay for the SSH connection.