In comp.unix.solaris cljlk <com> wrote:
DOH!!! It's not SPOCK'S BRAIN's fault, I didn't notice the
4.1.4 part to tell him.
Tony Walton wants to know why you are running 4.1.4.
Okay, I don't remember if there's a system way to do it.
Ogg died and willed me no manuals.
Also, you have stated BOTH
a) I don't want to allow direct remote root login
b) I need to allow direct remote root login
If you want #a:
Here's a script way to do it. IIRC, I was never able to
CTL/C out of it to a shell at the right time to get a
root prompt. Try it yourself.
Assuming you're running a Bourne shell, edit this into
the top of /etc/profile:
trap "trap '' 0 1 2 3;exit 1" 0 1 2 3
if [ "$uid" = "uid=0" -a `tty` != "/dev/console" ]
echo "Root logins are only permitted on the console"
When you need to su to root, use "su" instead of "su -".
And check/test/hack with /etc/syslog.conf to get the
logging you want.
-am © 2003