Date: Thu, 14 Mar 2002 15:42:26 -0800 From: Eli Dart <dart@nersc.gov> To: freebsd-security@freebsd.org Subject: Re: sshd UseLogin option Message-ID: <20020314234226.306E63B1AB@gemini.nersc.gov> In-Reply-To: Your message of Thu, 14 Mar 2002 09:42:53 MST. <15504.54029.424057.761653@caddis.yogotech.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--==_Exmh_-317853754P Content-Type: text/plain; charset=us-ascii In reply to Nate Williams <nate@yogotech.com> : > > > Could someone please explain to me why we don't use sshd's UseLogin > > > option by default? I know that there was a security hole related to > > > that option recently, but that's not a real reason - security holes > > > can show up anywhere - so is there anything that makes UseLogin a > > > particularly bad idea? > > > > Who uses system passwords with ssh(1)? > > We do for our remote access boxes that have numerous users accessing > them. Also, if you want to use sudo, you need to have local passwords. Yes, you can use keys as well, but many folks don't bother. --eli --==_Exmh_-317853754P Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: This is a comment. iD8DBQE8kTViLTFEeF+CsrMRAmFEAJoCbUb+fqaej0my6Gw0tcUXs+d3+ACg1ECU FNn2ZF3RLmC8N2aXxY7az3U= =Lj30 -----END PGP SIGNATURE----- --==_Exmh_-317853754P-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020314234226.306E63B1AB>