attack 2
Paul Howarth
paul at city-fan.org
Wed May 11 07:04:55 UTC 2005
On Tue, 2005-05-10 at 19:22 -0700, Michael A. Peters wrote:
> On Tue, 2005-05-10 at 20:53 -0500, Thomas Cameron wrote:
>
> > This time, use strong passwords. And disable root loging via SSH.
> >
> > Thomas
> >
>
> I don't understand why Fedora ships with root ssh enabled.
> In fact, it would be nice if no uid under 500 was enabled.
>
> May not have helped in this case, but the sshd default imho is wrong,
> especially since the default is to start the service upon install.
Perhaps this is done to allow a remotely-installed machine (e.g. a vnc
install) to be administered after the first reboot, when there are no
regular users or certificates installed?
Paul.
--
Paul Howarth <paul at city-fan.org>
More information about the fedora-list
mailing list