Donavan, I think he was making a suggestion to the thread starter
regarding disabeling direct root login, not a complaint :) Not all of
us hate the direct root login, especially with a fresh install thats
half way around the world and you got a monkey installing the OS :) (
I've been there done that w/ freebsd ).
--
Beau Henderson
http://www.iminteractive.net
On Thu, 27 Jan 2005 16:04:42 -0600, donavan nelson <donavan@xxxxxxx> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> Greg Knaddison wrote:
> | On that subject, it's worth considering that many installations are
> | not terribly "secure" right out of the box. For example, SSH allows
> | protocol version 1 and remote root logins by default on Centos. Many
> | admins consider this to be rather insecure - some have no problem with
> | it in their environments.
>
> This is merely a duplication of the configuration of RHEL out of the
> box. IMHO, security due diligence is not a function of the distro provider.
>
> .dn
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.6 (GNU/Linux)
> Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
>
> iD8DBQFB+WV6CRFXD+VcGBkRAodBAJ4qFG4aZhdRBRzWawLQRKZ+xINK/gCfYIhA
> tXnJ+XfDPdam5AUEPC7+dTs=
> =wVed
> -----END PGP SIGNATURE-----
> _______________________________________________
> CentOS mailing list
> CentOS@xxxxxxxxxxx
> http://lists.caosity.org/mailman/listinfo/centos
>
