1 |
On 11/10/2015 04:11 PM, wabenbau@×××××.com wrote: |
2 |
> |
3 |
> You can disable password login for that user on the server. Then he |
4 |
> can only login via ssh key. Only with the knowledge of the root |
5 |
> password it is not possible to gain root access to the server. An |
6 |
> attacker also needs the ssh key. And with a camera, keylogger, or |
7 |
> measuring radiation he can not fetch that key. |
8 |
> |
9 |
|
10 |
This is pretty close to what I originally asked for, thank you. |
11 |
If you disable all password logins to the server AND disable remote root |
12 |
logins altogether, then you can stop someone from gaining root by |
13 |
peeking over your shoulder as you type. |
14 |
|
15 |
Unless they bash you over the head and swipe your laptop. But still, |
16 |
I'll take it. |