> Good question. Let's spin it around a bit, though: if > somebody did enable root logins via telnet on a UNIX > system in this day and age, should they really have > anything to do with UNIX?
You are right that opening root to remote access a machine via any way (telnet/rsh/ssh) is asking for trouble. Root should only be via CONSOLE or SU... I guess another point is the way the exploit was released, since I believe that it was release on the web before notifying Sun about it, which is very Irresponsible. Andrew This message posted from opensolaris.org _______________________________________________ opensolaris-discuss mailing list [email protected]
