DukeNM wrote:

> how do i enforce security for logins??
>
> if i have a liveserver and would like have it accessed only by one
> single user only remotely or locally then how should it be done?
>
> should this user be 'root'
>
> or any other user, who can login and then su as root.

------
In your /etc/shadow /etc/passwd, give only one non-privileged user
the ability to login remotely. You want to harden the password of
/root.

Then configure your system so that the account can remote-login
only by a secure means "i.e. ssh" and disable any other daemons
by which cleartext passwords can pass for authentication.

The only two accounts that can login on the console shall be "root"
and your non-privileged user account.

- Steve Hathaway