From owner-freebsd-current@FreeBSD.ORG Thu Feb 5 18:17:17 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D281016A4CE for ; Thu, 5 Feb 2004 18:17:17 -0800 (PST) Received: from cmsrelay01.mx.net (cmsrelay01.mx.net [165.212.11.110]) by mx1.FreeBSD.org (Postfix) with SMTP id 4BEBD43D1D for ; Thu, 5 Feb 2004 18:17:16 -0800 (PST) (envelope-from noackjr@compgeek.com) Received: from cmsapps02.cms.usa.net (165.212.11.138) by cmsoutbound.mx.net with SMTP; 6 Feb 2004 02:17:15 -0000 Received: from optimator.noacks.org [65.71.32.141] by cmsapps02.cms.usa.net (ASMTP/noackjr@usa.net) via mtad (C8.MAIN.3.13N) with ESMTP id 975iBFcRN0046M38; Fri, 06 Feb 2004 02:17:13 GMT X-USANET-Auth: 65.71.32.141 AUTH noackjr@usa.net optimator.noacks.org Received: from localhost (localhost [127.0.0.1]) by optimator.noacks.org (Postfix) with ESMTP id DEBE4610C; Thu, 5 Feb 2004 20:17:12 -0600 (CST) Received: from optimator.noacks.org ([127.0.0.1]) by localhost (optimator.noacks.org [127.0.0.1]) (amavisd-new, port 10024) with LMTP id 41845-07; Thu, 5 Feb 2004 20:17:11 -0600 (CST) Received: from www.noacks.org (localhost [127.0.0.1]) by optimator.noacks.org (Postfix) with SMTP id 97D366101; Thu, 5 Feb 2004 20:17:11 -0600 (CST) Received: from 192.168.1.10 (SquirrelMail authenticated user noackjr) by www.noacks.org with HTTP; Thu, 5 Feb 2004 20:17:11 -0600 (CST) Message-ID: <50687.192.168.1.10.1076033831.squirrel@www.noacks.org> In-Reply-To: <01e701c3ec28$71b61070$0601a8c0@SPECULUSHX1THE> References: <00d901c3ec11$5a600ff0$0601a8c0@SPECULUSHX1THE><20040205183346.GA18731@xor.obsecurity.org><01a201c3ec25$9a7156d0$0601a8c0@SPECULUSHX1THE><20040205202914.GA25270@xor.obsecurity.org> <01e701c3ec28$71b61070$0601a8c0@SPECULUSHX1THE> Date: Thu, 5 Feb 2004 20:17:11 -0600 (CST) From: "Jon Noack" To: "Jimmy Firewire" User-Agent: SquirrelMail/1.4.2 MIME-Version: 1.0 Content-Type: text/plain;charset=iso-8859-1 X-Priority: 3 Importance: Normal X-Virus-Scanned: by amavisd-new at noacks.org Content-Transfer-Encoding: quoted-printable cc: freebsd-current@freebsd.org Subject: Re: RSA/DSA Host key generation didn't happen X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: noackjr@compgeek.com List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Feb 2004 02:17:17 -0000 Jimmy Firewire wrote: > OK, I was being completely stupid. sshd wasn't enabled, I was just so u= sed > to it being enabled by default. I think it's a good idea that it is not > enabled by default however.But why take out sshd and not sendmail? Sure= ly > sendmail is more likely to be a problem than sshd? By default sendmail only accepts messages from the localhost (sendmail_enable=3D"NO" but sendmail_submit_enable=3D"YES"). The idea is= to have no "public" services running unless you specfically enable them -- this makes for a very secure default install. Jon Noack