From owner-freebsd-questions  Wed Oct 29 09:04:55 1997
Return-Path: <owner-freebsd-questions>
Received: (from root@localhost)
          by hub.freebsd.org (8.8.7/8.8.7) id JAA27977
          for questions-outgoing; Wed, 29 Oct 1997 09:04:55 -0800 (PST)
          (envelope-from owner-freebsd-questions)
Received: from gridsat.thegrid.net (root@gridsat.thegrid.net [209.60.100.4])
          by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id JAA27969
          for <freebsd-questions@FreeBSD.ORG>; Wed, 29 Oct 1997 09:04:52 -0800 (PST)
          (envelope-from dean@thegrid.net)
Received: from Dean (tech1.thegrid.net [209.60.110.71])
	by gridsat.thegrid.net (8.8.7/8.8.5) with SMTP id JAA21270;
	Wed, 29 Oct 1997 09:04:24 -0800 (PST)
Message-Id: <3.0.1.32.19971029090752.006a3fdc@mail.thegrid.net>
X-Sender: i236555@mail.thegrid.net
X-Mailer: Windows Eudora Pro Version 3.0.1 (32)
Date: Wed, 29 Oct 1997 09:07:52 -0800
To: Peter Philipp <pjp@globalserve.net>, ringlord@bbs.dcoisp.net
From: Dean <dean@thegrid.net>
Subject: Re: login as root remotely not possible?
Cc: freebsd-questions@FreeBSD.ORG
In-Reply-To: <Pine.BSF.3.96.971028004856.498A-100000@tap.system.ca>
References: <TCPSMTP.17.10.27.-11.10.54.3047923923.2614@bbs.dcoisp.net>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-freebsd-questions@FreeBSD.ORG
X-Loop: FreeBSD.org
Precedence: bulk

At 12:54 AM 10/28/97 -0500, Peter Philipp wrote:
>On Mon, 27 Oct 1997 ringlord@bbs.dcoisp.net wrote:
>
>> However, when I try either telnetting into my freebsd box, or rlogging
>> into my freebsd box from a remote network.  The passwd for root doesn't
>> work.  That is to say, when I try to login to my freebsd box either
>> rlogin or telnet, I am unable to login as root.  However, I was able to
>> create another user account and place that account into the proper
>> groups to su to root, so all is working well.  I was just wondering if
>> this was a natural thing, not being able to login as root when either
>> telnetting or rlogging into my machine?
>
>The su way is the proper way to do this.  But if you really want to login
>as root remotely you'll have to edit the file /etc/ttys and add "secure"
>to the ttyp? (pseudo ttys).  This will enable you to login as root.
>Please, please, if you do something like this at least use ssh (secure
>shell) as your machine could be compromised very quickly if someone is
>sniffing your network.
>
>Here is a sample entry for /etc/ttys
>
>ttyp0	none	network	secure
>ttyp1	none	network	secure 
>
>and so on...
>
>Another reason this is a bad idea is that if someone does a dictionary
>attack on your telnet login root cannot be compromised.
>
>Hope that helps,
>
>Peter

How would one gain access this way?
Dean