On Fri, Mar 28, 2008 at 1:37 PM, Per Jessen
Druid wrote:
Having thought a litle more about it, I definitely vote yes - that change would have only negligible effect for any server-install users, whereas it would not create additional work for desktop-only/mostly newbies with a better default setting.
What exactly is "better" about not starting sshd by default?
Erm, the same thing that is better not having any remote service opened by default? The fact that it could have a vulnerability that could lead to a successful attack? Its pretty clear why not having a service running by default (specially those offering it to the outside world) is better than the opposite, if you dont see that possibly you just don't want to see. Its the same reason we dont see apaches, telnetd's, mysqls, ntpds, etc running by default. Now you want to convince everyone that everybody ssh to their own boxes running sshd all the time, and that this is the default usecase around the planet, just because you dont want to run "insserv sshd" once, and additionally its better to change the Earth's rotation instead of you typing those 13 keystrokes (including the enter) so you activate your sshd. Except for me, I can rarely find someone ssh'ing to their boxes, except when those boxes are shared servers, in which case the damn admin might as well have the knowledge to start or stop an ssh daemon. Marcio --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org