[ILUG] Re: Ubuntu rocks.
bigbro at skynet.ie
Wed Apr 6 16:44:06 IST 2005
-----BEGIN PGP SIGNED MESSAGE-----
I thought I had made it clear, but obviously not clear enough for the
ilug list ;-)
Yes - I was specifically and exclusively referring to the 'server'
install of the OS. I agree that the desktop version should not have an
sshd installed (but people can, of course, install one if they like.) I
would question the usefulness of a headless server in this day and age
without ssh access. You can always turn OFF sshd if you don't want it...
but it's a bit difficult to turn it off if you have no way to access the
machine over the net...
IMHO, YMMV, IANAL, usual disclaimers apply, etc. :-)
Niall Sheridan wrote:
| On Wed, 2005-04-06 at 15:29 +0100, Gavin McCullagh wrote:
|>The full release of Hoary is apparently due out today though there's no
|>sign. Then they can start work on "Breezy Badger" --- the alliterate
| Friday. The release was pushed back to get Gnome 2.10.1 included. Main
| is in freeze as of last night.
|>> One thing which did annoy me is the complete lack of an sshd installed
|>>or running. I was rather annoyed to have to walk back upstairs and KVM
|>>an 'apt-get install openssh-server' before being able to talk to my box
|>>over the network. Again, I would anticipate that this will be rectified
|>>in later 'server' releases.
|>I certainly hope not. I for one am most pleased by the fact that a
|>portscan of a vanilla Ubuntu install reveals absolutely zero open ports.
|>As you said, this is a desktop-focussed distro. This is a system I
|>my parents, girlfriend etc. While I don't want them to ignore security
|>patching (I particularly like Hoary's new Upgrade Notifier), I also don't
|>want to worry about future remote exploits.
|>There might be some argument to say that the server install should add
|>suppose but if one is configuring a server, it's hardly a big deal to
|>install ssh. Anyway, not every server needs ssh.
| This is just Gareth making vague "WAH!" noises because redhat installs
| an ssh server by default, while neglecting to mention that it doesn't
| just stop at ssh and will happily put things like cups in too. It's safe
| to ignore him :)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (MingW32)
-----END PGP SIGNATURE-----
More information about the ILUG