Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    PermitRootLogin=yes disabled

    Scheduled Pinned Locked Moved General pfSense Questions
    2 Posts 2 Posters 2.1k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C Offline
      cat1510
      last edited by

      Hi,

      how can i disable the direkt ssh acces to root user via password?
      I want to add another user that has ssh access. When i need to be root on console then i can su -.
      In config.xml is no way to define it and sshd_config is rewritten at any reboot.

      Any suggestions?

      CAT

      1 Reply Last reply Reply Quote 0
      • jimpJ Offline
        jimp Rebel Alliance Developer Netgate
        last edited by

        The root user needs ssh access in order for scp to work.

        Direct access to root or admin or any account is equally dangerous on the firewall.

        You should protect access to ssh entirely, not just a specific user. If you switch to key-only auth, and limit access by IP, and for good measure change the port ssh runs on, it's safe even to login as root.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.