Re: attack 2

To: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
Subject: Re: attack 2
From: Arthur Pemberton <dalive@xxxxxxxxxxxxx>
Date: Wed, 11 May 2005 00:00:33 -0400
In-reply-to: <[email protected]>
List-archive: <https://www.redhat.com/archives/fedora-list>
List-help: <mailto:[email protected]?subject=help>
List-id: For users of Fedora Core releases <fedora-list.redhat.com>
List-post: <mailto:[email protected]>
List-subscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=subscribe>
List-unsubscribe: <http://www.redhat.com/mailman/listinfo/fedora-list>, <mailto:[email protected]?subject=unsubscribe>
References: <000001c555ad$db099a70$6764a8c0@pccat03> <002201c555cc$3ac6e5d0$fc00a8c0@neuromancer> <[email protected]>
Reply-to: For users of Fedora Core releases <fedora-list@xxxxxxxxxx>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7.7) Gecko/20050417 Fedora/1.7.7-1.3.1

Michael A. Peters wrote:

On Tue, 2005-05-10 at 20:53 -0500, Thomas Cameron wrote:

This time, use strong passwords.  And disable root loging via SSH.

Thomas


I don't understand why Fedora ships with root ssh enabled.
In fact, it would be nice if no uid under 500 was enabled.

May not have helped in this case, but the sshd default imho is wrong,
especially since the default is to start the service upon install.

Exactly my point. I would actually go with the UID>=500 route. Shall we file a bug report? No reason why this can't make it in to FC4

References:
- attack 2
  - From: roland brouwers
- Re: attack 2
  - From: Thomas Cameron
- Re: attack 2
  - From: Michael A. Peters