Which do you think is safer: having to enter a separate password for root access or — as sudo
comes set up by default — having to use your regular user’s password for full root access?
There are other (and better) ways to disable root logins — whether remotely or locally — than disabling the root account’s password.
What security flaw?
No, its default configuration is actually fairly safe, albeit not ideal. And modifying /etc/ssh/sshd_config
does not change the configuration of an already running sshd
server without a deliberate rehash. Furthermore, sshd
is disabled by default in Manjaro — one has to explicitly enable it.
Not possible, given that sshd
is disabled by default.
Furthermore, if you have an actual root password set and root login is enabled — which I do not believe to be the default, because the documentation explicitly mentions that it should only be enabled with secure passkeys — then they would need to use a brute-force tool to guess your root password, which would take them a lot of time and effort, and with every three failed login attempts, there’s an automatic and increasing timeout during which no logins are allowed anymore.
You sure have a lot of imagination, and I’m also quite convinced that what you’re describing would make a great scenario for a Hollywood movie starring a still very young Angelina Jolie, in which the mere act of inserting a floppy disk with a computer virus written for MS-DOS into a floppy drive on a mainframe can bring down the whole mainframe, but in the real world, things don’t work that way.
That’s impossible. Even if you had already manually enabled sshd
and you were editing the configuration file, then your changes to the configuration would not have any effect yet until after a rehash or a restart. Your password would also not magically start working again after unplugging your Ethernet cable.
Nonsense. How did the attacker know what desktop environment you’re running and therefore which graphical file manager to invoke? And why would they need to, when they can do it all from the command line? Because that’s what sshd
does: it gives one remote access via a command line only, because X11 forwarding is disabled by default and must be explicitly allowed.
I don’t think you understand what a rootkit is. A rootkit does not force one to log in as root, and it also doesn’t give an attacker access to your computer.
A rootkit is a set of tools that allow an attacker to hide the fact that they already do have access to your computer, and it does that by replacing certain binaries that would betray the fact that they are accessing your system, such as modified versions of ls
, ps
, et al.
No @philm, the way I see it there are only two possibilities…:
-
The OP is trolling us, and by way of the Dunning-Kruger effect, he believes that the story that he concocted in his ignorance regarding how a UNIX operating system really works would hold credibility among the masses and — indeed — even the people who do know and use GNU/Linux.
-
The other possibility is alas a very sad one, but one that I cannot exclude due to my experience with an individual who reported similar things — albeit that this individual was running Windows at the time — which is that the OP is hallucinating, either due to some mental illness or due to substance abuse. In the event of the character I spoke of here-above, it was both — he was a diagnosed schizophrenic and he did drugs. And then Satan had taken over his computer and started typing “666” on IRC and all that.
Either way, those are the only two options. Either the OP is deliberately trolling us — possibly with the intent of scaring off the newbies, and I’ve been on Usenet long enough to have witnessed thousands of such posts from deliberate trolls — or the OP is hallucinating.
Either way, this thread is not doing the community of members and lurkers alike any good, so I’m unlisting it. I’ll leave it open for discussion for the time being, albeit that I don’t know whether there’s any point. There are so many red flags going off with what the OP reports that I don’t even know where to begin counting them.