From owner-freebsd-questions@FreeBSD.ORG Tue Nov 17 17:54:17 2009 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 3F433106568B for ; Tue, 17 Nov 2009 17:54:17 +0000 (UTC) (envelope-from sonicy@otenet.gr) Received: from kane.otenet.gr (kane.otenet.gr [83.235.67.31]) by mx1.freebsd.org (Postfix) with ESMTP id 9FD848FC1B for ; Tue, 17 Nov 2009 17:54:16 +0000 (UTC) Received: from pulstar.local (ppp-94-69-68-121.home.otenet.gr [94.69.68.121]) by kane.otenet.gr (8.13.8/8.13.8/Debian-3) with ESMTP id nAHHsEfU027631; Tue, 17 Nov 2009 19:54:14 +0200 Message-ID: <4B02E346.3070209@otenet.gr> Date: Tue, 17 Nov 2009 19:54:14 +0200 From: Manolis Kiagias User-Agent: Thunderbird 2.0.0.23 (Macintosh/20090812) MIME-Version: 1.0 To: Gary Kline References: <20091115234930.GA11465@thought.org> <20091116010014.f3ca28de.freebsd@edvax.de> <20091116070056.GE11539@thought.org> <20091116203149.1785f7c1.freebsd@edvax.de> <20091116231236.GA15714@thought.org> <20091117160117.12c71262.freebsd@edvax.de> <20091117174540.GB19113@thought.org> In-Reply-To: <20091117174540.GB19113@thought.org> X-Enigmail-Version: 0.96.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Cc: FreeBSD Mailing List Subject: Re: no sshd on new server... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Nov 2009 17:54:17 -0000 Gary Kline wrote: > On Tue, Nov 17, 2009 at 04:01:17PM +0100, Polytropon wrote: > >> On Mon, 16 Nov 2009 15:12:36 -0800, Gary Kline wrote: >> >>> On Mon, Nov 16, 2009 at 08:31:49PM +0100, Polytropon wrote: >>> >>>> By the way, it's not a problem if /etc/rc.conf is empty. >>>> In this case, defaults are used, but: >>>> >>>> % grep sshd /etc/defaults/rc.conf >>>> sshd_enable="NO" # Enable sshd >>>> >>>> As you see, sshd_enable is set to "NO" by default. >>>> >>>> >>> darn, but that would've been that last thing i would have >>> expected... . i dont see any rationale... >>> >> Rationale: Secure by default. Ermm... wait, that was >> a different OS. :-) >> >> At least, there's no telnet enabled by default with >> empty root password... :-) >> >> > > > all right, all right. it might be better to default on the side of > security. but it takes soooo much more to login remote via ssh that > it seems fairly secure to me if it were enabled. ... . > > There is a question during sysinstall: "Would you like to enable ssh login?" Guess you answered "no" there?