Date: Fri, 5 Oct 2001 12:01:39 -0400 From: Peter Radcliffe <pir@pir.net> To: stable@FreeBSD.org Subject: Re: Why sshd:PermitRootLogin = no ? Message-ID: <20011005120139.D10847@pir.net> In-Reply-To: <19436.1002297239@axl.seasidesoftware.co.za>; from sheldonh@starjuice.net on Fri, Oct 05, 2001 at 05:53:59PM %2B0200 References: <19436.1002297239@axl.seasidesoftware.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
Sheldon Hearn <sheldonh@starjuice.net> probably said: > Why is sshd's PermitRootLogin set to 'no' in the default installation of > FreeBSD? Because it's sensible. > The security gain for a brand new installation is questionable. The > downside is that, when you have remote hands pressing the buttons for > you during the installation, an extra user has to be created by those > hands. 1) Most people are not installing like that. 2) I disagree with "questionable" security gain for a new installation. 3) If it isn't the default most people will never change it, and the long term security gain is certainly not questionable. 4) It's consistant with the default behaviour for telnetd. If you need a custom installation for remote use, then build a custom installation ... install.cfg and many other things exist for a reason. P. -- pir pir-sig@pir.net pir-sig@net.tufts.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20011005120139.D10847>