On 2/6/06, Les Mikesell lesmikesell@gmail.com wrote:
The same is true for ssh... And would you rather have a tool where problems have been found and fixed or where they haven't been found ...yet?
Circular argument here. Are you saying that ssh has holes, or that because webmin has had known holes in the past that were fixed that it is hole-free now? Both ssh and webmin could have unpatched holes. Track records for security speak a great deal about a product <insert Anti-microsoft comment HERE>.
I don't see ssh as a "one program to rule them all" any more than vim is, because you are still required to know the syntax, configs, location, options etc whereas in webmin they're all laid out with a consistent ui. Like I said, it's my personal opinion. Logical or not, I stick by it.
More than anything I think it's an option for me of "The admin should know what he's doing", and interfaces that allow J. Random User to point, click, and call himself an admin worry me from a security standpoint. Nearly all the problems I see during the course of a given day are the result of poor administration. Yes, things should be easy to administer. Yes doing it from the command line makes it more challenging and you can spend hours looking for a missing semi-colon or bracket. But NO there is no substitution for someone who knows what the hell they're doing when it comes to security. </rant>
I'm not really sure a reply is warranted. I'd rather not start a flamewar/OT discussion. If you get the urge to reply anyway, we can continue offlist.
-- "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety'' Benjamin Franklin 1775