I'm new here, but I feel like chiming in, I hope my opinions are
welcome. At first glance at this thread it seems unnecessary to argue
about the necessity of these checks when when the option exists to give
users the choice.
Adding configuration option(s) for users who wish to bypass these checks
could allow experienced users to do what they need to, and less
experienced users could still benefit form the protection by default.
Generally, giving users the choice should not be controversial, but I
will note that there is the mild fear of a user googling the error and
finding misguided advice to simply disable the check.
Charlie
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev