Firstboot query
Adam Williamson
awilliam at redhat.com
Tue Apr 27 21:28:47 UTC 2010
On Tue, 2010-04-27 at 20:43 +0200, Tomas Mraz wrote:
> This was always allowed with the reasoning that headless remote installs
> without kickstart would not be otherwise possible .
>
> If there is consensus that this install use-case should not be supported
> anymore it would be possible to
> a) disable ssh port in the firewall by default
> b) do not start sshd by default
> c) disallow root login in the sshd_config file
>
> or any combination of the above.
>
> In my opinion b) alone would be the best choice as this would make sshd
> similar to other services.
I doubt there's consensus, likely just me misunderstanding. It doesn't
seem like a great default configuration, but if it's something that's
explicitly been allowed and which admins rely on, we should certainly be
careful about changing it, and if it doesn't currently work in practice,
we should fix that for F13. Thanks for the explanation.
So Tony, disregarding my earlier mails, could you file a bug on whatever
is preventing this working as it did in F12? Thanks.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Fedora Talk: adamwill AT fedoraproject DOT org
http://www.happyassassin.net
More information about the test
mailing list