Re: openssh-server's default config is dangerous

To: debian-user@lists.debian.org
Subject: Re: openssh-server's default config is dangerous
From: Lisi Reisz <lisi.reisz@gmail.com>
Date: Tue, 12 Jul 2016 18:48:52 +0100
Message-id: <[🔎] 201607121848.52626.lisi.reisz@gmail.com>
In-reply-to: <[🔎] 2e819c9e-3889-43a0-bf0f-451f7ae9b05e@rail.eu.org>
References: <[🔎] 20160712092610.GA6945@debian> <[🔎] 201607121834.29905.lisi.reisz@gmail.com> <[🔎] 2e819c9e-3889-43a0-bf0f-451f7ae9b05e@rail.eu.org>

On Tuesday 12 July 2016 18:39:29 Erwan David wrote:
> Le 12/07/2016 à 19:34, Lisi Reisz a écrit :
> > My solution to that is physical access to the computer, actually sitting
> > in front of it - login without a password.  ALL external access, even
> > from the neighbouring computer, use a strong password in case someone
> > breaks into your network from outside.
> >
> > Lisi
>
> Note that there are computers to which no user has physical access.

Of course.  But anyone who is administering such a computer can be assumed to 
be at least knowledgeable enough to reconfigure ssh to suit his/her 
needs/likes/wants!  And I would never advocate passwordless entry, nor a weak 
password, in such a situation. 

> > "ALL external access, even
> > from the neighbouring computer, use a strong password in case someone
> > breaks into your network from outside."

Lisi

Reply to:

References:
- openssh-server's default config is dangerous
  - From: mwnx <mwnx@gmx.com>
- Re: openssh-server's default config is dangerous
  - From: Lisi Reisz <lisi.reisz@gmail.com>
- Re: openssh-server's default config is dangerous
  - From: Erwan David <erwan@rail.eu.org>

Prev by Date: Re: openssh-server's default config is dangerous
Next by Date: Re: openssh-server's default config is dangerous
Previous by thread: Re: openssh-server's default config is dangerous
Next by thread: Re: openssh-server's default config is dangerous
Index(es):
- Date
- Thread