Many network protocols such as rlogind and telnetd do not encrypt network communication,
making it easy for an intruder to sniff the administrative passwords
from the network. Try to minimize the usage of these nonsecure protocols.
To prevent an administrative login through such
a protocol, you can use the /etc/securetty file
to limit logging in to the root account only through the system console.
For instance, to restrict root logins to only the console, create
the/etc/security file with a single line consisting
of console. For more information, see login(1).
Printable version
