On 11/21/2014 09:04 AM, P J P wrote:
> On Friday, 21 November 2014 1:24 PM, Florian Weimer wrote:
>> On 11/21/2014 08:34 AM, Jan Kratochvil wrote:
>> Almost all of my Fedora installations are test VMs where
>> any security is irrelevant.
Okay. But does enabling root login offer any significant benefit in that? IOW, if
it's disabled by default, would it cause any significant inconvenience/troubles?? If
not, it better be disabled by default.
For example for me it would be some inconvenience. I also use a lot of Fedora
VMs for
testing and none of them has regular user, just root.
However I can see the benefits of disabling root login by default. Especially
from the security point of view. I think it would be a good move.
Regards,
Tomas
> I think it's a valid use case, but rather poorly supported at
the
> moment. For example, there should be completely seemless SSH login from
> virt-manager for user-manageable virtual machines (both as root and the
> user).
>
> My point is that once we address this (most likely through some
> configuration generation during VM setup), we can also switch
> PermitRootLogin on.
You mean off? Or that we disable it by default and enable it while setting up a new
VM?
---
Regards
-Prasad
http://feedmug.com