On Wed, 25 Oct 2000 18:57:14 -0700 (PDT) Bryan Whitehead
<[EMAIL PROTECTED]> writes:
> This is false. SSH must be installed BECAUSE it's a workstation.
> Since a Workstation is going to be managed by a SysAdmin then
> he/she needs to connect to it securly so he/she can admin it.
Espicially
> when root passwords will be thrown around to "fix", "maintain", or
> install new software on the machine.
As one who has spent waaaay too many years as a sysadm, I can say with
absolute certainty that every site is different. Some things that we
call workstations will be managed by a sysadm, some will not. The policy
may differ for different 'workstations' at a particular site.
Now, that being said, I _totally_ agree with your conclusions, just not
your assumptions. What a box runs as far as daemons go has very little
to do with the class (eg: server, workstation - these are all " 'bitty
boxes " to me, I happen to spend a disproportionate amount of time on big
iron like HP's K & M class, Pyramid (cough), Sequent, and so forth). I
use linux to get to other machines and to do base programming (then port
to other platforms). With the power that is available in a box for <
$2000 today, it may be someone's workstation but be a NFS server (NFS
being originally designed for workgroup-type of sharing) time server, or
web server to another person.
I think that sshd should be one of those daemons that if installed, the
installer is asked if (s)he wants to start it up at boot just like the
kdm/xdm, ntpd, lpd, cron, httpd, and the plethora of other daemons that
inhabit a particular box. It might be useful to ask this if the security
is set to something other than nil. sshd is NOT needed for a box that is
not networked or is not secured.
< stepping back from the fray, he dons his asbestos long johns >
>
> SSH is always needed. End of story. I admin over 120 Machines some
> of which are across the Pacific (i'm in Pasadena at JPL and we manage
> machines in Hawaii for the Keck Observitory), Across the desert
> (goldstone where radio dishs are located), and up mountains (Palamor
> Observitory). I rely on SSHD to connect to these clients securly all
the
> time. And they are all workstations. SSHD is 185k of magic. No resone
> not to install it on a workstation.
>
-----BEGIN GEEK CODE BLOCK-----
Version 3.12 (see http://www.geekcode.com/geek.html for details)
GCS d- s: a C++$ ULAHS++++$ P+++$ L+++>++++$ E++>++++ W+(-) N+ o K? w---
O- !M-- V- PS+ PE+ Y+ PGP t 5- X- R- tv-->! b++ DI++ D+ G+ e++>++++ h*
r++ y++++
------END GEEK CODE BLOCK------
