|
|
|
|
|
|
by jve
1485 days ago
|
|
|
As others pointed out, you just add another factor (TOTP) or print backup codes. Or just have another way to sign in. Generate random password for root user, store it in your password manager, disable root login via SSH and... whenever you find your user locked out, log via root via console. In a corporate environment, you could audit and alert whenever root logs in as it should be only "recovery" user. |
|
|