This prevents root access from any means except physically logging in on the Digi CM console.
- Modify "/etc/inetd.conf" and append -f /usr2/sshd_config to the sshd line.
- cp /etc/inetd.conf /usr2/inetd.conf
- Edit "/etc/ssh/sshd_config". Change "PermitRootLogin" to no.
- cp /etc/ssh/sshd_config /usr2
- Add the following commands in the "/usr2/rc.user" script. Add these commands just above "exit 0":
- cp -a /usr2/inetd.conf /etc/inetd.conf
- while killall inetd 2>/dev/null;
- do sleep 5;
- done
- /usr/sbin/inetd
- reboot
NOTE: If you factory default the unit, the "/usr2/rc.user" script file is moved to "/usr2/rc.user.old#" and the default rc.user file will be restored.
Last updated:
Jan 16, 2024