On 2015-01-06 09:33, whoami toask wrote:
https://stribika.github.io/2015/01/04/secure-secure-shell.html
Is the default config for SSHD enough secure?
Or the different distros modifications are the ones that make it not
the best regarding security?
Thanks.
---
(This reply is only to misc@. This is not appropriate to tech@ and the
kind
advice at http://www.openbsd.org/mail.html says "Do not cross-post....")
---
The sshd(8) server has these two default sshd_config(5) settings which
may be helpful
when initially provisioning a new remote computer:
PasswordAuthentication yes
PermitRootLogin yes
*Think* about why these might not be good provisioning choices for a
platform that is
on the Internet, or on a network either with untrusted systems or
systems that are Internet
facing and could be co-opted.
