RE: [j-nsp] On the Junipers you can ssh as root.

• Next message: Daniel Golding: "RE: Multicast configuration on fully meshed atm network"
• Previous message: Daniel Golding: "RE: [j-nsp] 48 port line cards"
• In reply to: Stacy W. Smith: "RE: [j-nsp] On the Junipers you can ssh as root."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

Stacy,

Thanks!

I'll have to give that a try.

- Dan

> -----Original Message-----
> From: Stacy W. Smith [mailto:stacy@conxion.net]
> Sent: Wednesday, March 21, 2001 2:10 PM
> To: Daniel Golding
> Cc: juniper-nsp@puck.nether.net
> Subject: RE: [j-nsp] On the Junipers you can ssh as root.
>
>
> At 12:45 PM 3/21/2001 -0500, Daniel Golding wrote:
> >2) There is no way to properly account for root access on a
> Juniper, UNLESS
> >you are forced to Radius authenticate with your own username, then either
> >sudo, or su to root.
>
> Assuming:
>
> 1) you use "authentication-order radius;"
> 2) you do not have a "root" account in your RADIUS database
> 3) the RADIUS server is reachable.
>
> The you can not SSH into the router as root. When the RADIUS
> server becomes unreachable, you can log in as root.
>
> Does that satisfy your requirement?
>
> --Stacy
>

• Next message: Daniel Golding: "RE: Multicast configuration on fully meshed atm network"
• Previous message: Daniel Golding: "RE: [j-nsp] 48 port line cards"
• In reply to: Stacy W. Smith: "RE: [j-nsp] On the Junipers you can ssh as root."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Mon Aug 05 2002 - 10:42:41 EDT