From owner-freebsd-questions@FreeBSD.ORG Thu Feb 3 22:33:10 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id A4EC216A4CE for ; Thu, 3 Feb 2005 22:33:10 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.198]) by mx1.FreeBSD.org (Postfix) with ESMTP id B6FCC43D2F for ; Thu, 3 Feb 2005 22:33:09 +0000 (GMT) (envelope-from gert.cuykens@gmail.com) Received: by rproxy.gmail.com with SMTP id f1so299753rne for ; Thu, 03 Feb 2005 14:33:08 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:mime-version:content-type:content-transfer-encoding; b=TZZdAuPiFsJgs2/mwM4fPcp5r9BBcEWMFFQAeOW2X2LJzJz2CuYDquXxUfuAJ5uiP7M6qQ6vVRJWTMeDxR7i1+ZQ2xmguq4qmv6kprZLLXQdt/lyGEtKbJD/PbwZZjQ3bIunsAVIQYGNNfRe9AlwF40M/ncvZHuVJJ6tDLe9JSs= Received: by 10.38.125.29 with SMTP id x29mr236378rnc; Thu, 03 Feb 2005 14:32:18 -0800 (PST) Received: by 10.38.74.23 with HTTP; Thu, 3 Feb 2005 14:32:18 -0800 (PST) Message-ID: Date: Thu, 3 Feb 2005 23:32:18 +0100 From: Gert Cuykens To: freebsd-questions@freebsd.org Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: ssh default security risc X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Gert Cuykens List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 03 Feb 2005 22:33:10 -0000 By default the root ssh is disabled. If a dedicated server x somewhere far far away doesn't have root ssh enabled the admin is pretty much screwed if they hack his user account and change the user password right ? So is it not better to enable it by default ?