On Sat 29 Mar 2008 03:28:59 NZDT +1300, Marcus Meissner wrote:
We are thinking about disabling the ssh daemon by default.
Reason is that it most desktop users do not use it all and it is just taking away memory for those, and also presenting an attack surface once the firewall is disabled.
Good move. People who don't know what ssh is don't need the exposure risk. I'm not sure that saving the memory is a good argument, but why run something that isn't used. The security risk is the strongest argument.
Reenabling it would be as simble as:
And should be as simple as ticking "enable sshd" and "open port in firewall" during installation, about at the same place where "enable firewall port" is now. Even for desktops ssh is always needed for me, whether for copying files (scp, rsync) or (LAN-)remote anything. It's probably still safer to enable ssh than any of the other remote access protocols, so it should be easily available. I disagree with not installing it to save a few bytes of disk space. Volker -- Volker Kuhlmann is list0570 with the domain in header http://volker.dnsalias.net/ Please do not CC list postings to me. --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org