Re: Root SSH permitted by default (was: how does root run a graphical prog)

To: debian-user@lists.debian.org
Subject: Re: Root SSH permitted by default (was: how does root run a graphical prog)
From: Colin Watson <cjwatson@debian.org>
Date: Mon, 20 May 2002 20:26:11 +0100
Message-id: <[🔎] 20020520192610.GC31416@arborlon.riva.ucam.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20020520133749.19d52f42.jcollins@asgardsrealm.net>
References: <[🔎] 20020520234531.A5314@singnet.com.sg> <[🔎] 200205201849.19341.gtdev@spearhead.de> <[🔎] 20020520123728.B606@sherohman.org> <[🔎] 20020520180150.GA30651@arborlon.riva.ucam.org> <[🔎] 20020520133749.19d52f42.jcollins@asgardsrealm.net>

On Mon, May 20, 2002 at 01:37:49PM -0500, Jamin W. Collins wrote:
> On Mon, 20 May 2002 19:01:50 +0100
> "Colin Watson" <cjwatson@debian.org> wrote:
> > Not in woody and sid, at least. See the paragraphs in
> > /usr/share/doc/ssh/README.Debian headed "PermitRootLogin set to yes".
> 
> Man, talk about a bad stance to take.  Personally, I'd say this is a bug
> in the default configuration.  However, it appears that the package
> maintainer does not agree:

*sigh*

Like the document says, regularly su'ing to root from an account makes
compromising that account essentially equivalent to compromising root
anyway. I don't see a problem with the default configuration, and nor do
OpenSSH upstream.

> DO NOT FILE BUG REPORTS SAYING YOU THINK THIS DEFAULT IS INCORRECT!
> 
> SSH should not be installed to permit root logins or password auth by
> default. 

I can safely say that this is a pointless discussion; I know the
maintainer, and he's not going to change his mind. If you disagree,
you're free to change the configuration for yourself.

-- 
Colin Watson                                  [cjwatson@flatline.org.uk]

-- 
To UNSUBSCRIBE, email to debian-user-request@lists.debian.org 
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: Root SSH permitted by default (was: how does root run a graphical prog)
  - From: Jamin W.Collins <jcollins@asgardsrealm.net>
- Re: Root SSH permitted by default (was: how does root run a graphical prog)
  - From: Dave Sherohman <esper@sherohman.org>
- Re: Root SSH permitted by default (was: how does root run a graphical prog)
  - From: "Michael D. Schleif" <mds@helices.org>

References:
- how does root run a graphical prog
  - From: Willy S <spamtrap@bozz.com>
- Re: how does root run a graphical prog
  - From: Nicos Gollan <gtdev@spearhead.de>
- Re: how does root run a graphical prog
  - From: Dave Sherohman <esper@sherohman.org>
- Re: how does root run a graphical prog
  - From: Colin Watson <cjwatson@debian.org>
- Root SSH permitted by default (was: how does root run a graphical prog)
  - From: Jamin W.Collins <jcollins@asgardsrealm.net>

Prev by Date: mounting audio CD
Next by Date: Re: Calendar/scheduling softwae fro debain?
Previous by thread: Root SSH permitted by default (was: how does root run a graphical prog)
Next by thread: Re: Root SSH permitted by default (was: how does root run a graphical prog)
Index(es):
- Date
- Thread