||Simple Things to Improve Your System's Security|
- why not use root login ?
"somebody might get access with your rootpassword
so .. what?
.. if they can read my ssh-session
they will get my su - password too
ok .. say: "use sudo!" .. yes so what?
.. an attacker gets the same rights
that the user has
-check the fingerprint of the server
that you are connecting to
-use private keys to authenticate
passwords are local on the machine
that you are logging in from
(they are used to unlock your private key)
if you don't trust that machine->
do not login from there!
-you can even have several users with uid 0
each with there own ~/.ssh/authorized_keys
you can do accounting this way too!