Hi Harald, On 05-03-2019 09:00, Harald Dunkel wrote: > Sorry to reopen this bug report. The issue is still unresolved. > And its not a documentation issue, either. As this isn't (as you say) a documentation issue, could you please assign it to the right package then? Currently it is assigned to the release-notes; your issue will not be resolved by the people caring for those. > Its not reasonable to install and activate an ssh service at > debootstrap time, and then disable it for the only available > login because ssh password-based login is vulnerable to a brute > force attack. Why was ssh installed in the first place? As I am not involved in that area, I have no clue. This is the wrong place to discuss this. Paul
Attachment:
signature.asc
Description: OpenPGP digital signature