please deactivate services by default!
Chris Adams
cmadams at hiwaay.net
Thu Sep 25 18:30:17 UTC 2008
Once upon a time, Tomas Mraz <tmraz at redhat.com> said:
> On Thu, 2008-09-25 at 09:36 -0500, Chris Adams wrote:
> > Once upon a time, Rahul Sundaram <sundaram at fedoraproject.org> said:
> > > No. sshd has always been disabled on the live cd since it doesn't have a
> > > root password.
> >
> > Wouldn't it be better to have sshd configured to either:
> >
> > - block root logins
> This is not yet done due to the requirement to be able to install a
> server remotely through vnc without a kickstart file.
>
> > - block logins to accounts with no password
> This was always the case for sshd.
Okay, so the "sshd has always been disabled on the live cd since it
doesn't have a root password" justification doesn't quite work (or does
"PermitRootLogin yes" override "PermitEmptyPasswords no"?).
--
Chris Adams <cmadams at hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
More information about the fedora-devel-list
mailing list