Checkout https://www.digitalocean.com/community/ ... sh-keys--2rpiswag wrote:I googled but I couldn't find a tutorial to disable password less sudo and I could find a tutorial to change the root account username.
People in this thread keep mentioning something about key only ssh and abandoning passwords altogether.40 character long password ...
That's what I use. Key based authentication for my normal logins, and a set of one-time passwords for the rare occasions I need to log in from another system.hampi wrote:Or using one-time passwords? Not really expert on this field.morphy_richards wrote:People in this thread keep mentioning something about key only ssh and abandoning passwords altogether.
You don't understand. I have a botnet with 1 million zombie PCs. I can instruct them to hack your system. Each one gets 6 tries, so that's 6 million guesses. Next week I'll have a new botnet with 1 million *new* addresses that you haven't blocked yet.rpiswag wrote:But does this really make the security better because each computer only gets 6 retries and after that they can't keep brute forcing? They could get the passwords in six tried but the chances of some being able to guess a password that is 40 character long and is completely random with numbers letters and and special characters. Thank you for the link.
To require a password for sudo you have to edit the sudoers file.rpiswag wrote:Thank you! That answers some of my questions now what about the other questions I mentioned like disabling password less sudo?
Code: Select all
$ sudo nano /etc/sudoers