Re: git: SSHD - Change default security
On 15 November 2009 16:37, Matthew Dillon <dillon@apollo.backplane.com> wrote:
>>>>http://gitweb.dragonflybsd.org/dragonfly.git/commitdiff/85088528028b88399264dd4c006aeff001bbeb6b
> ꀠ啱 think this is our chance to get people to think more seriously
> ꀠ乸bout security in a world where plain-text password access has been
> ꀠ濵nder serious attack for the last 20 years now, and getting more
> ꀠ澵erious every day. 嘭asswords for shell access (via ssh) are dead in
> ꀠ濳he modern world, It is just too dangerous in my view.
>
> ꀠ糍his doesn't affect workstation or console logins or su, only incoming
> ꀠ澵sh connections. 孭nd this only affects new installs, not upgrades.
>
> ꀠ啱f a user installing a new system wants to use a password for incoming
> ꀠ澵sh access they have to enable it for ssh in /etc/ssh/sshd_config...
> ꀠ濳hat really is not any more complicated then users who wanted to enable
> ꀠ湶ncoming root access via ssh and also had to (previously) edit
> ꀠꀯetc/ssh/sshd_config. 嘅ow both cases are uniform. 嚒shd by default
> ꀠ乸llows you to use public keys but not passwords on new installs.
> ꀠ嚒imple.
But sshd is disabled by default in the first place, so now the new
users, never familiar with DragonFly, would have not only to manually
enable sshd and the root login, but also change the
PasswordAuthentication setting, something that would appear to be
quite specific to DragonFly, since few other default installs come
with this setting at 'no'.
Considering the benefits vs. the pitfalls, is this really making the
system any more secure? If the user has bothered to create a non-root
account and enable sshd, then it would not seem to appear very likely
that they'd be using a really non-unique user name together with a
really weak password.
I think the PasswordAuthentication settings should be changed back to
the default value of 'yes' as it is in the upstream OpenSSH and
OpenSSH Portable.
C.
討論串 (同標題文章)
完整討論串 (本文為第 8 之 9 篇):