Restricting Root Login (cont)

• /etc/ttytab lists what terminals root can log in on with a “secure” flag

#

# @(#)ttytab 1.7 92/06/23 SMI

# name getty type status comments

console "/usr/etc/getty cons8" sun on local secure

ttya "/usr/etc/getty std.9600" unknown off local secure

ttyb "/usr/etc/getty std.9600" unknown off local secure

tty00 "/usr/etc/getty std.9600" unknown off local secure

• Delete all “secure” entries except “console”

Previous slide

Next slide

Back to first slide

View graphic version