Re: Things I Don't Understand About Debian

To: debian-user@lists.debian.org
Subject: Re: Things I Don't Understand About Debian
From: Sjoerd Hardeman <sjoerd@lorentz.leidenuniv.nl>
Date: Thu, 24 Feb 2011 17:21:51 +0100
Message-id: <[🔎] 4D66859F.8030209@lorentz.leidenuniv.nl>
In-reply-to: <[🔎] 20110224142539.GF17846@poseidon.cocyt.us>
References: <[🔎] AANLkTi=X5zHBuqRV41Sf5x-qra3SiUzGB+jiCrcOatmx@mail.gmail.com> <[🔎] 1298539100.4085.1@compax> <[🔎] 20110224142539.GF17846@poseidon.cocyt.us>

Aaron Toponce schreef:

On Thu, Feb 24, 2011 at 10:18:20AM +0100, Klistvud wrote:

4. The sshd daemon allows root logins by default.


Oh brother. The ssh daemon also allows logins via passwords. I assume
you think this is less secure as well, as ssh keys should be the
preferred method. We should also change the port off 22 to something
like 31867, right?

Security by obscurity my friend. Security by obscurity.

No, it is not. When root logins are allowed, you only need to know onepassword. When root-logins are not allowed, you need to know twopasswords *and* a user name.


Sjoerd

Attachment: signature.asc
Description: OpenPGP digital signature

Reply to:

Follow-Ups:
- Re: Things I Don't Understand About Debian
  - From: Andrei Popescu <andreimpopescu@gmail.com>
- Re: Things I Don't Understand About Debian
  - From: Aaron Toponce <aaron.toponce@gmail.com>

References:
- Things I Don't Understand About Debian
  - From: Carlos Mennens <carloswill@gmail.com>
- Re: Things I Don't Understand About Debian
  - From: Klistvud <quotations@aliceadsl.fr>
- Re: Things I Don't Understand About Debian
  - From: Aaron Toponce <aaron.toponce@gmail.com>

Prev by Date: basic audio editing software
Next by Date: Re: Things I Don't Understand About Debian
Previous by thread: Re: Things I Don't Understand About Debian
Next by thread: Re: Things I Don't Understand About Debian
Index(es):
- Date
- Thread