attack 2

Arthur Pemberton dalive at flashmail.com
Wed May 11 04:00:33 UTC 2005


Michael A. Peters wrote:

>On Tue, 2005-05-10 at 20:53 -0500, Thomas Cameron wrote:
>
>  
>
>>This time, use strong passwords.  And disable root loging via SSH.
>>
>>Thomas 
>>
>>    
>>
>
>I don't understand why Fedora ships with root ssh enabled.
>In fact, it would be nice if no uid under 500 was enabled.
>
>May not have helped in this case, but the sshd default imho is wrong,
>especially since the default is to start the service upon install.
>
>  
>
Exactly my point. I would actually go with the UID>=500 route. Shall we 
file a bug report? No reason why this can't make it in to FC4




More information about the fedora-list mailing list