Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen <per@xxxxxxxxxxxx>
- Date: Fri, 20 Nov 2009 20:06:09 +0100
Lars Müller wrote:
On Fri, Nov 20, 2009 at 07:12:50PM +0100, Per Jessen wrote:http://download.openSUSE.org/pub/opensuse/distribution/11.2/repo/oss/docu/RELEASE-NOTES.en.html
Lars Müller wrote:[ 8< ]
This is a simple and secure design decission (KISS). And this
change was well documented.
Doesn't change a thing. Where was it documented by the way? I don't
remember there being much community discussion about it.
http://lists.opensuse.org/opensuse-factory/2008-03/msg00495.html
Ah yes, I do vaguely remember that - even if it was more than 18 months
ago.
Funny to see who commented on the initial suggestion made by the
security team and which suggestions people made.
Funny? Here are some the things I said back then -
"... but I don't see any reason for changing it at all. An unused
sshd uses very little memory, and whatever it does use is very quickly
swapped out."
"Having thought a litle more about it, I definitely vote no - that
change would have only negligible effect for desktop-only/mostly users,
whereas it would only create additional work for any server-install."
I also asked:
"What exactly is "better" about not starting sshd by default? " No
useful answer.
I even pointed out that "Nobody has described any _actual_ improvements..
Running sshd behind the default firewall does not make the system any
less secure, and it does not waste any memory when it isn't used."
Nothing funny about me repeating myself, IMHO.
/Per
--
Per Jessen, Zürich (7.1°C)
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
- Follow-Ups:
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Peter Nikolic
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- References:
- [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Marcus Meissner
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Lars Müller
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Lars Müller
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Lars Müller
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Per Jessen
- Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- From: Lars Müller
- [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- Prev by Date: Re: [opensuse] firefox won't play youtube and other flash problems
- Next by Date: Re: [opensuse] software manager in 11.2
- Previous by thread: Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- Next by thread: Re: [opensuse] 11.2 - what was the reasoning behind disabling sshd by default?
- Index(es):
Relevant Pages
|
