sshd
Dick Davies
rasputnik at gmail.com
Wed Jun 21 15:33:36 UTC 2006
On 21/06/06, ubuntu at rio.vg <ubuntu at rio.vg> wrote:
> Gunnar Salbeck wrote:
> >
> > After installing Ubuntu sshd is not installed yet.
> > If someone install the package "openssh-server" he should know how to
> > configure it.
> >
>
> I don't think this assumption is accurate.
If it isn't, we should be installing a firewall by default.
Sadly, I think you're right. With the current setup:
user a is dumb.
he doesn't know how to set a root password, or what root is.
when he installs sshd to get to his machine remotely
(though I can't understand why he'd do that)
he can login as his usual user.
He's happy.
user b is just smart enough to be dangerous.
He's enabled the root account.
when he installs sshd, he can get in as root.
He likes being root.
He's happy.
user c is teh b0mb (zor).
He knows how to edit a file.
he's big enough and ugly enough to take care of himself.
Who cares if he's happy?
Setting 'PermitRootLogin no' doesn't affect users a or c
(a doesn't understand what ssh is, c doesnt.
It puts b slightly more at risk.
On reflection, I don't see what the problem would be setting it to 'no'.
Secure by default and all that. Go and raise a bug.
--
Rasputin :: Jack of All Trades - Master of Nuns
http://number9.hellooperator.net/
More information about the ubuntu-users
mailing list