On Thu, 2005-01-06 at 14:47 -0500, Jeff Spaleta wrote: > On Thu, 06 Jan 2005 17:47:39 +0000, P@xxxxxxxxxxxxxx <P@xxxxxxxxxxxxxx> wrote: > > So can we change the upstream default back to what it used to be? > > How about you convince the upstream developers at the openssh to > switch the default back, instead of laying the burden at the > distributor level to customize this. I don't think its reasonable to Though generally I agree it's a good idea to push stuff like this upstream, based on the last discussion on this list with one of the OpenSSH developers, I have to wonder if it's going to do any good in this case. And based on Havoc Pennington's recent response to this thread, if he's correct, then it's a silly default which should be reverted. A security measure which nearly *everybody* will need to disable is no security measure at all. -Paul "here's to hoping lsh will soon become functionally equivalent enough to replace openssh soon" Iadonisi (With apologies to Jeff ;-)) -- -Paul Iadonisi Senior System Administrator Red Hat Certified Engineer / Local Linux Lobbyist Ever see a penguin fly? -- Try Linux. GPL all the way: Sell services, don't lease secrets
