This computer sits behind a router for the most part but will be occassionally opened to the world.
I disabled root login by modiying the SSHD config file and I can no longer login as root remotely from any computer, even within my NAT router network.
The user account is a toally random 12 character password which I needed to record cause I'd never remember
Anyways...occassionally I want to install something or whatever and would prefer to leave the root password blank or something simple like password. Seeing as no one will be able to login directly as root, remotely anyways, would this be bad practice?
On second thought...I guess all they would have to do is login to my user account and SU into root...
Although honestly, I'd be surprised if anyone crackered a 12 character random password that contained symbols, characters and numbers...in which case...with that kind of determination...I couldn't stop them even if I wanted to
Normally, on a live server I wouldn't do this, but because the server and my computer are behind a NAT router and the SSH ports aren't even open (I don't htink -- how do I confirm that?) I'm not even sure I should be that worried about strong psaswords, never mind disabling root login. What says you? Give my situation?
Cheers,
Alex