[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-developers] root access problem
- Subject: Re: [cobalt-developers] root access problem
- From: shimi <shimi@xxxxxxxxxxxxxxxx>
- Date: Sun Jun 24 19:58:01 2001
- List-id: Discussion Forum for developers on Cobalt Networks products <cobalt-developers.list.cobalt.com>
> Hi Shimi,
>
hello :)
> > Taco, weren't Sun the guys who told us not to top-post? ;-)
> I am not aware of it ;)
hehe :)
> > And with regards to the login directly as root via SSH... WHY in the world
> > did Cobalt enabled this by default?! (if indeed what you said is true...)
> Set set things straight: first of all it was not Cobalt, but me - Taco Scargo -
> who released the pkg-s for the Cobalt appliances (and I am the one to blame).
> Furthermore this is default behaviour for ssh. Just install any ssh rpm on a
> linux box.
Is RPM a default installation? I thought that was ./configure, make & make
install... Remember, RPM is a packing of someone's else work... it doesn't
necessarily contain the defaults...
In my opinion that should be blocked (remote root login) - and just have a
pkg that reinstalls su, chmod +s it, and set the root password to
something, which the lost user could change immediately after
installation.
Not that I don't trust SSH's security, but, someday it might be exploited,
AND, brute forcing directly to root is more "cool" for crackers... that's
only my opinion, though.
> > With regards,
same
>
> Taco Scargo
>
> Professional Services Manager, EMEA
>
> Sun Microsystems Tel. +31 (71) 565 7021
> Sun Cobalt Server Appliances taco.scargo@xxxxxxx
- shimi.