Subject: Re: inetd.conf defaults
To: None <tech-net@netbsd.org>
From: Wolfgang Rupprecht <wolfgang@wsrcc.com>
List: tech-net
Date: 05/28/2000 11:22:55
sommerfeld@orchard.arlington.ma.us (Bill Sommerfeld) writes:
> but for now it's safer to just turn them off and let people decide
> what's safe in their environments.

This is good but doesn't give newbies much guidance in how to select a
safe service.  Perhaps there should be a line in /etc/inetd.conf with
the ssh commented out and a one-line pointer to where to install ssh
from?

# ssh is the only secure login and file-copy service in this example
#  file.  Please grab it from http://xxxx... and install.
# ssh		stream	tcp	nowait	root	/usr/pkg/sbin/sshd 	sshd -i

Including a secure /etc/ssh.conf file would also be nice.

Come to think of it, are there any freely redistributable versions of
ssh?  It would really be nice if the stock netbsd came with
*something* safe to log in with.

-wolfgang
-- 
       Wolfgang Rupprecht <wolfgang+gnus@dailyplanet.wsrcc.com>
		    http://www.wsrcc.com/wolfgang/
DGPS signals via the Internet  http://www.wsrcc.com/wolfgang/gps/dgps-ip.html