From owner-freebsd-arch Tue Oct 10 8:58: 7 2000 Delivered-To: freebsd-arch@freebsd.org Received: from critter.freebsd.dk (flutter.freebsd.dk [212.242.40.147]) by hub.freebsd.org (Postfix) with ESMTP id 1004037B502; Tue, 10 Oct 2000 08:58:05 -0700 (PDT) Received: from critter (localhost [127.0.0.1]) by critter.freebsd.dk (8.11.0/8.9.3) with ESMTP id e9AFw2N72358; Tue, 10 Oct 2000 17:58:02 +0200 (CEST) (envelope-from phk@critter.freebsd.dk) To: Robert Watson Cc: Kris Kennaway , Terry Lambert , arch@FreeBSD.ORG, Matt Dillon , Warner Losh , Jeroen Ruigrok van der Werven Subject: Re: cvs commit: src/etc inetd.conf In-Reply-To: Your message of "Tue, 10 Oct 2000 11:54:09 EDT." Date: Tue, 10 Oct 2000 17:58:02 +0200 Message-ID: <72356.971193482@critter> From: Poul-Henning Kamp Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG In message , Robe rt Watson writes: > >On Mon, 9 Oct 2000, Kris Kennaway wrote: > >> On Tue, Oct 10, 2000 at 02:11:11AM +0000, Terry Lambert wrote: >> > > > > Do any committers have any objections to me disabling ntalk, finger, >> > > > > telnet, rsh, and ftp by default in -current? And sandboxing 'named' by >> > > > > default in -current? >> > >> > Won't this make it difficult to bootstrap a headless 1U box? >> >> The point, which many people in this discussion somehow keep missing, >> is that when you do a default installation of recent versions of >> FreeBSD, the machine reboots with ssh enabled and working. > >As I pointed out earlier, there needs to be a way for the administrator to >securely retrieve the SSH key so that they can log in securely. And as I pointed out earlier: having ssh doesn't help people who have only a windows box to connect from. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD coreteam member | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message