27 Jan
2005
27 Jan
'05
11:22 p.m.
Donavan, I think he was making a suggestion to the thread starter regarding disabeling direct root login, not a complaint :) Not all of us hate the direct root login, especially with a fresh install thats half way around the world and you got a monkey installing the OS :) ( I've been there done that w/ freebsd ).
--
Beau Henderson
http://www.iminteractive.net
On Thu, 27 Jan 2005 16:04:42 -0600, donavan nelson donavan@4wx.net wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Greg Knaddison wrote:
> | On that subject, it's worth considering that many installations are
> | not terribly "secure" right out of the box. For example, SSH allows
> | protocol version 1 and remote root logins by default on Centos. Many
> | admins consider this to be rather insecure - some have no problem with
> | it in their environments.
>
> This is merely a duplication of the configuration of RHEL out of the
> box. IMHO, security due diligence is not a function of the distro provider.
>
> .dn
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.6 (GNU/Linux)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFB+WV6CRFXD+VcGBkRAodBAJ4qFG4aZhdRBRzWawLQRKZ+xINK/gCfYIhA
> tXnJ+XfDPdam5AUEPC7+dTs=
> =wVed
> -----END PGP SIGNATURE-----
> _______________________________________________
> CentOS mailing list
> CentOS@caosity.org
> http://lists.caosity.org/mailman/listinfo/centos
>