Please, do you really find it necessary to be so condescending?
Wrt understanding, I would suggest you try to understand that _you_ do not define what _we_ should focus on.
It is necessary, because you are avoiding that like a cat avoids water. Half of the emails in this thread are oppinions, which Marcus asked, the other are your emails stating wrong stuff.
What people want here is the common case, what would be best for the majority of the users, specially those with less linux knowledge.
Who says that? (apart from yourself).
If Marcus asked the people's oppinion about sshd being disabled by *default*, I think its pretty clear that the DEFAULT is what works for most people, and usually the DEFAULT goal is to make it better and more secure for everyone, specially those who have less linux knowledge.
2) You dont have enough imagination to think of different usecases, thats why you come saying anything is not a problem, its because you cant see the problem, its not because the problem isnt there.
Please don't tell what I do and do not have and can and cannot see. It's none of your business.
Sorry, I have to, you are repeatedly stating wrong information to justify your statements, and that can be misleading. Wish there was a better way... Since you will probably ask, let me put some of your wrong assumptions in here so I dont need to give another reply: - Saying there is no problem with ssh on lan, because a LAN is secure - Saying you dont need a firewall in a LAN - Saying there is no problem with sshd running because sshd is secure - Ignoring that an sshd attack doesnt need a security hole, could be ddos or brute force - Assuming there is no problem with sshd running because there will be a firewall - Ignoring its good practice to have external services enabled as a minimum - Stating that its better a newbie user to (potentially) deal with security by disabling sshd, instead of letting him not worry about and a server admin worry about enabling it if he needs to I just saw you sent a new email, so I will add another reason: - You're blaming a newbie because he doesnt know security. He is a NEWBIE, of course he doesnt know security. Thats why people desiging their stuff should think of a secure default. And just so you dont say its a random attack, I will, yet another n-th time, give a use case on why a firewall would be disable by a newbie by accident or naivety: - A newbie wants to play a game or share files with a friend in a notebook. Its well known that samba, zeroconf and some nfs setups are very firewall unfriendly, not to mention a user using network manager could have trouble while switching from a network to another (for example, at home he wants to share with a windows pc, so he disable the firewall, and then he goes to work, in a bad lan). Why blaming a newbie for being a newbie? Regards Marcio --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org