-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 11/20/2009 12:50 PM, Lars Müller wrote:
On Fri, Nov 20, 2009 at 12:17:46PM +0100, Per Jessen wrote:
b) this change was documented and is easy to reverts.
service sshd start chkconfig -a sshd
* open the port in the firewall. Provided the machine is not headless or worse, remote.
This is not about "single-user". This is about a reasonable default for the current time. Five years ago we've not seen such distributed brute force ssh attacks.
But you can not make a reasonable default for every body, you need several. You have to ask at the start of every install what is the intended usage of the installation, and then, take appropiate defaults for each one. - -- Cheers / Saludos, Carlos E. R. (from 11.2-ex-factory "Emerald" GM) -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.12 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org/ iEYEARECAAYFAksHAHMACgkQU92UU+smfQXIcACfazGw3QAOJIGe8++1HaFGFLpA vi8An1gdyZJlQcvw/r4i93OdxALVZQIv =v8v8 -----END PGP SIGNATURE----- -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org