On 11/01/2011, at 12:20 , Dan Shoop wrote: > All true, but no reason why a sysadmin should complain of sshd "lying". It's > a simple matter to just perform a `sshd -T` and see exactly what is and isn't > configured. A sysadmin should be expected to read the man page at least, > especially if it's not behaving as they expect. Blaming software for your own > errors isn't helpful.
Another way of expressing this is: When reality doesn't match your expectations, it's never reality that needs to change :) From my own experience it's easy to get lulled into a false sense of competence, where I believe I know "everything about X". Then one day X behaves differently to what I expect, and I'm suddenly left feeling like the carpet has been pulled out from under me. This is especially the case for Open SSH which has many different authentication methods, meaning you have to really pay attention to configuring it correctly. I agree with Dan's recommendation about getting the O'Reilly book (though my preference is to get the electronic copy to store locally on the iPad). Even if you're only configuring the one server, it's one service you need to get right the first time. Alex _______________________________________________ MacOSX-admin mailing list [email protected] http://www.omnigroup.com/mailman/listinfo/macosx-admin
