> Hi Shimi,
>
hello :)
> > Taco, weren't Sun the guys who told us not to top-post? ;-)
> I am not aware of it ;)
hehe :)
> > And with regards to the login directly as root via SSH... WHY in the world
> > did Cobalt enabled this by default?! (if indeed what you said is true...)
> Set set things straight: first of all it was not Cobalt, but me - Taco Scargo -
> who released the pkg-s for the Cobalt appliances (and I am the one to blame).
> Furthermore this is default behaviour for ssh. Just install any ssh rpm on a
> linux box.
Is RPM a default installation? I thought that was ./configure, make & make
install... Remember, RPM is a packing of someone's else work... it doesn't
necessarily contain the defaults...
In my opinion that should be blocked (remote root login) - and just have a
pkg that reinstalls su, chmod +s it, and set the root password to
something, which the lost user could change immediately after
installation.
Not that I don't trust SSH's security, but, someday it might be exploited,
AND, brute forcing directly to root is more "cool" for crackers... that's
only my opinion, though.
> > With regards,
same
>
> Taco Scargo
>
> Professional Services Manager, EMEA
>
> Sun Microsystems Tel. +31 (71) 565 7021
> Sun Cobalt Server Appliances [EMAIL PROTECTED]
- shimi.
_______________________________________________
cobalt-developers mailing list
[EMAIL PROTECTED]
http://list.cobalt.com/mailman/listinfo/cobalt-developers
