-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 In re allowing remote root login: 1) It's only a matter of time before the password ~ is guessed correctly. It is irrelevant that the ~ password is not in any dictionary. 2) Unknown vulnerabilities may yet be discovered. 3) A previously patched vulnerability may be ~ (un)intentionally reintroduced. 4) Do you seriously want to play the odds? How ~ much you got to lose? How much you got? 5) The stars will not always be in your favor. 6) Allowing remote root access gives the bad guys ~ a big advantage: Gets them at least halfway to ~ their goal of pwning you. 7) Why make it easier for them? 8) Fate: she's very fickle. 9) How do you know that your password will always be safe? 10) Murphy--He lives! RedHat is probably more for experienced users who are expected to know how to set up security policies. Debian/ubuntu seems geared more toward inexperienced users, so Deb/Ub have decided to help protect users from themselves. Allowing remote root logins is useful for setting up a box. Overall there's no advantage to it for a production box. It's a little less convenient to have to sudo but one can get used to that quickly. == jd -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.4-svn0 (GNU/Linux) iD8DBQFIRVPXhpL3F+HeDrIRAvC5AJ9SfXY6VpvSlJm+tClE80ILbFav1QCfXPG/ ilgD6aa8SaXVT93TPw9vo7E= =Emjk -----END PGP SIGNATURE-----
