Limiting Root Access to the Console on Digi CM Products.

This prevents root access from any means except physically logging in on the Digi CM console.

 

  • Modify "/etc/inetd.conf" and append -f /usr2/sshd_config to the sshd line.
  • cp /etc/inetd.conf /usr2/inetd.conf
  • Edit "/etc/ssh/sshd_config". Change "PermitRootLogin" to no.
  • cp /etc/ssh/sshd_config /usr2
  • Add the following commands in the "/usr2/rc.user" script. Add these commands just above "exit 0":
    • cp -a /usr2/inetd.conf /etc/inetd.conf
    • while killall inetd 2>/dev/null;
    • do sleep 5;
    • done
    • /usr/sbin/inetd
  • reboot

NOTE: If you factory default the unit, the "/usr2/rc.user" script file is moved to "/usr2/rc.user.old#" and the default rc.user file will be restored.

Last updated: Aug 08, 2017

Recently Viewed Articles

No recently viewed articles
Contact a Digi expert and get started today! Contact Us