From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by finch.gentoo.org (Postfix) with ESMTPS id 23A6C138359 for ; Sat, 11 Jul 2020 05:13:31 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 68DF9E0878; Sat, 11 Jul 2020 05:12:56 +0000 (UTC) Received: from pmta31.teksavvy.com (pmta31.teksavvy.com [76.10.157.38]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 0DA27E0870 for ; Sat, 11 Jul 2020 05:12:55 +0000 (UTC) IronPort-SDR: r4KhqOiyEqCjbMjLQoBABTC4k4wD11Zm/qe3MdpVTzoeISk1ZaD0VxPMSOsosFW0jXr7ldZMcJ phwfpu2CUvIw== X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A2FuGgDpSQlf/1J4oWxggQkHgUWDF1R?= =?us-ascii?q?fh3xohFCGB5wvgWkLAQEBIQgRAQIEAQGBBYNCBAICghglOBMCAwEBCwEBAQU?= =?us-ascii?q?BAQEBAQYEAgKGUEMWAQGDeIEzQwY6HDMLLQEBAQQSVxmDJ4J8qQqBNIQCgU+?= =?us-ascii?q?FHoE4AY0KP4ECP4QhPoN2gQYJAgMCgnqCLQSPFKYDCoJdgQ2HQosShWUCLZE?= =?us-ascii?q?rjXusCoRlgXaBe30IgyQJRxkNV41TF45AKDA3AgYIAQEDCVcBiXmBC4FXDxW?= =?us-ascii?q?CIAEB?= X-IPAS-Result: =?us-ascii?q?A2FuGgDpSQlf/1J4oWxggQkHgUWDF1Rfh3xohFCGB5wvg?= =?us-ascii?q?WkLAQEBIQgRAQIEAQGBBYNCBAICghglOBMCAwEBCwEBAQUBAQEBAQYEAgKGU?= =?us-ascii?q?EMWAQGDeIEzQwY6HDMLLQEBAQQSVxmDJ4J8qQqBNIQCgU+FHoE4AY0KP4ECP?= =?us-ascii?q?4QhPoN2gQYJAgMCgnqCLQSPFKYDCoJdgQ2HQosShWUCLZErjXusCoRlgXaBe?= =?us-ascii?q?30IgyQJRxkNV41TF45AKDA3AgYIAQEDCVcBiXmBC4FXDxWCIAEB?= X-IronPort-AV: E=Sophos;i="5.75,338,1589256000"; d="scan'208";a="138780407" Received: from 108-161-120-82.dsl.teksavvy.com (HELO waltdnes.org) ([108.161.120.82]) by smtp13.teksavvy.com with SMTP; 11 Jul 2020 01:12:54 -0400 Received: by waltdnes.org (sSMTP sendmail emulation); Sat, 11 Jul 2020 01:12:41 -0400 From: "Walter Dnes" Date: Sat, 11 Jul 2020 01:12:41 -0400 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] ssh defaults to coming in as user "root"? Message-ID: <20200711051241.GA21618@waltdnes.org> References: <20200710230851.GA19867@waltdnes.org> <20200711003603.GA20245@waltdnes.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org X-Auto-Response-Suppress: DR, RN, NRN, OOF, AutoReply MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <20200711003603.GA20245@waltdnes.org> X-Archives-Salt: 7292aad6-a917-4008-b191-c2e02edfc14d X-Archives-Hash: c44de96871d60c1582c660d777c26635 On Fri, Jul 10, 2020 at 08:36:03PM -0400, Walter Dnes wrote > > The question is how did .ssh/config ever get there in the first place? Would the following activity trigger creation of .ssh/config ?? * at the end of the Gentoo minimal install I rebooted * oops; can't do passwordless ssh in to root (the only account) * walked over to laptop; tweaked sshd_config to allow root login via password (I'm behind a NATting router); and restarted sshd * ssh into laptop and ran ssh-keygen * walked back to desktop and pushed .ssh/id_rsa.pub from desktop root and waltdnes accounts to .ssh/authorized_keys on laptop * confirmed that desktop could do passwordless ssh to laptop * walked over to laptop; tweaked sshd_config to forbid root login via password; and restarted sshd -- Walter Dnes I don't run "desktop environments"; I run useful applications