2008/3/29, Druid
If you're on a LAN, you don't really need a firewall, do you?
and an open sshd isn't really a risk on a LAN.
Hi,
Thanks for your multiple inputs, but please have two things in mind: 1) Your personal experience is not exactly the common case, in which we should focus. Understand that. Try to think outside of your universe. What people want here is the common case, what would be best for the majority of the users, specially those with less linux knowledge. 2) You dont have enough imagination to think of different usecases, thats why you come saying anything is not a problem, its because you cant see the problem, its not because the problem isnt there.
I will, once again, show a use case for a problem you say supposedly doesnt exist. You are in a public hotspot and then you are in a lan and another laptop could bruteforce the ssh. There you have it, a lan in which you dont trust the other peers.
Desktop case: I have it enabled even on my laptop. Server case: It would be really annoying to install a new rack-mounted-headless-server through VNC and having to pull some monitor/serial console from somewhere else to enable ssh access (given it's a really crowded server room with few consoles). General case (given you are considering disabling sshd, not my choice): Disable it by default BUT add an option to enable it DURING installation, that way all the security hooligans will be happy, server admins will require a quick extra step and newbies will leave everything as default (as usually). Regards, Ciro --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-factory+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-factory+help@opensuse.org