From owner-freebsd-stable  Fri Oct  5 14: 6:56 2001
Delivered-To: freebsd-stable@freebsd.org
Received: from aquinas.techsquare.com (aquinas.techsquare.com [199.190.186.200])
	by hub.freebsd.org (Postfix) with ESMTP id ED68637B406
	for <stable@freebsd.org>; Fri,  5 Oct 2001 14:06:52 -0700 (PDT)
Received: (from jamie@localhost)
	by aquinas.techsquare.com (8.11.6/8.11.3) id f95L6Kj56502;
	Fri, 5 Oct 2001 17:06:20 -0400 (EDT)
	(envelope-from jamie)
Date: Fri, 5 Oct 2001 17:06:19 -0400
From: Jamie Oulman <jamie@techsquare.com>
To: Matt Dillon <dillon@earth.backplane.com>
Cc: stable@freebsd.org
Subject: Re: Why sshd:PermitRootLogin = no ?
Message-ID: <20011005170619.A42459@techsquare.com>
References: <5.1.0.14.0.20011005120304.009f8590@127.0.0.1> <200110052040.f95KeTw84982@earth.backplane.com> <20011005165350.A22343@techsquare.com> <200110052058.f95KwSR85154@earth.backplane.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <200110052058.f95KwSR85154@earth.backplane.com>; from dillon@earth.backplane.com on Fri, Oct 05, 2001 at 01:58:28PM -0700
Organization: TechSquare Inc <http://www.techsquare.com> 
X-PGP-ID: 56D99DC1 
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

matt. 

i think your missing the point of my comment. 

i never said it would increase or decrease the security of the 
superuser account. nor did i say it was detrimental to the 
person installing it. 

what i am saying is that i dont see any real point in making 
the change. if you want it enabled. do so after the installation. 

jamie.

On Fri, Oct 05, 2001 at 01:58:28PM -0700, Matt Dillon wrote:
> 
> :
> :why? 
> :
> :from what i can tell you want the default entry changed to accomodate 
> :your personal installation method? 
> :
> :i dont see a problem with PermitRootLogin no at all. its standard. 
> :if you want to use keys for root then change it after the installation. 
> :
> :again. maybe im missing the point. but i dont see what your average user
> :is going to gain from making a change like this. 
> :
> :jamie. 
> 
>     Huh?
> 
>     Tell me, Jamie, what effect does changing PermitRootLogin from no to
>     without-password have on a default installation?  And why would be 
>     detrimental to the 'average' user or reduce root security?  Think about
>     it a bit before shoot from the hip.
> 
> 						-Matt


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message