DragonFly BSD
DragonFly commits List (threaded) for 2010-04
[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]

Re: git: SSHD - Change default security


From: Matthew Dillon <dillon@xxxxxxxxxxxxxxxxxxxx>
Date: Tue, 27 Apr 2010 15:03:39 -0700 (PDT)

    We could enable sshd by default, assuming we can work out how to ensure
    the random number generator is seeded well enough at install-time to
    create a good host key.  It may well be that by the time the installer
    gets to the end of the install the RNG will be seeded well enough to
    generate secure keys.

    But there is no way I'm going to turn on tunneled plaintext password
    authentication on by default.  That's a major security hole.  Nobody
    should be using it for any reason.

						-Matt



[Date Prev][Date Next]  [Thread Prev][Thread Next]  [Date Index][Thread Index]