SSHd

Matthew Miller mattdm at mattdm.org
Mon Aug 21 02:11:32 UTC 2006


On Sun, Aug 20, 2006 at 04:56:48PM +0530, Rahul wrote:
> >I second that, however I would suggest going further and having
> >somethign denyhosts like in place or are we going with the assumption
> >that anyone owning a FC installation will be setting a good password,
> >or a weak password with the knowledge that SSHd is running?
> passwd program has checks in place to ensure that poor passwords are 
> rejected and yes if you have the root password on the system there is a 
> question of common sense too.

Sadly, since root is immune to the poor-password checks, and since common
sense is, um, well, not-so, "system compromised via incredibly poor password
choice" is something I've seen more often than I'd like to.

-- 
Matthew Miller           mattdm at mattdm.org          <http://mattdm.org/>
Boston University Linux      ------>              <http://linux.bu.edu/>




More information about the fedora-devel-list mailing list