On 11/20/2009 at 17:51, Per Jessen <per@opensuse.org> wrote: Nevertheless, apparently my sister did not have any troubles with them (she would not even know what she can do with this s-s-h whatever thingy...).
And had s-s-h-whatever been started like it has been in every release since 6.x, she would not have had any trouble either. Hence a change that has brought zero improvement for your sister, but a new annoyance for me.
That's where I beg to differ. Any service accessible from external across her cable modem gives surface to attackers... why should she risk this? She's certainly not the user updating the patches daily... and she's certainly not the one that is ever going to change the ssh config (you and me know that there is more possible than password auth... ). Having it switched off reduces such risks for her, while she does not have to take care of it. the system comes up faster (less services to start). The memory consumption can be mentioned, but is certainly not a critical point with sshd (it has a rather small footprint). so for her: no disadvantages, only advantages. For you: chkconfig sshd on (or any autoyast config you would like). but sure, this can go on forever... and ever... not every aspect of the distro is set the way I need it. Whenever I install it I have to uncheck 'use this password for system administration' (or however it's called)... so what? Let's give a normal user a machine that works, but let's keep all the options available for the not-so-regular users. Everything is there, one click away (or one command away, if you don't like the GUI). Dominique -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org