A Topic that needs to be discussed on next the QA meeting..
Tomas Mraz
tmraz at redhat.com
Tue Mar 18 08:16:12 UTC 2008
On Mon, 2008-03-17 at 20:43 -0400, Alan Cox wrote:
> On Mon, Mar 17, 2008 at 09:49:08PM +0000, Johann B. Gudmundsson wrote:
> > See bugs
> > https://bugzilla.redhat.com/show_bug.cgi?id=437811
> > https://bugzilla.redhat.com/show_bug.cgi?id=136289
> > https://bugzilla.redhat.com/show_bug.cgi?id=147557
> >
> > In my books this fails QA bigtime and poses a MAJOR security risk for
> > the end user(s).
>
> I think its pretty minor but I would concur that this is a mistake and we
> should not magically be opening holes any more than your car should come
> with the equivalent "convenience" feature of always being able to open one
> door without the key in case you lose them.
Nope, bad analogy. Having sshd open by default is to ship the car with
remote keys enabled by default vs. giving the driver remote keys but
request him to add a fuse to the fuse box if he wants to switch on the
receiver.
:)
--
Tomas Mraz
No matter how far down the wrong road you've gone, turn back.
Turkish proverb
More information about the fedora-test-list
mailing list