Sebastian Spaeth <[email protected]> writes: > Joshua Judson Rosen wrote: > > Sebastian Spaeth <[email protected]> writes: > > > No, because I don't want someone to send a thousand SMS when my WiFi is > > > turned on. > > > > Oh..., SHR has also included a change that makes ssh server > > listen to the WiFi interface (and the GPRS interface too?). > > Yes, when moving towards upstream OE, the fix got lost that disabled > listening on anything but USB0. No intention, but it happened. > AFAIK, openssh is using the standard configuration, so it will also > listen to everything, I think. Whether this should stay this way, is > another question.
If you're going to be using opensshd regardless, then you might as well keep both the `listen on all interfaces' `deny null password-logins' (they do go well together), but only if the default configuration that you ship *does* allow *pubkey* logins regardless of password status: at least for devices like the FreeRunner, where you can access the device's filesystem directly as a mass-storage device from a host PC, it's *trivial* to just load an authorized_keys file onto the device without ever having to *log into* the device. -- "Don't be afraid to ask (λf.((λx.xx) (λr.f(rr))))." _______________________________________________ Shr-devel mailing list [email protected] http://lists.shr-project.org/mailman/listinfo/shr-devel
