On Jan 29, 2008 11:15 PM, Jason Grout <[EMAIL PROTECTED]> wrote: > > I'm concerned about the security of having a default username/password > pair for the VMware image (login/sage). Since the VMware image is, in > part, targeted to people who either do not have the skills or do not > want to secure a network, why should we by default open a very easy > backdoor into their sage server? > > How about we have another option at the console login prompt to set up a > username and password for remote access. It won't be on by default, but > can easily be configured. The "remotelogin_setup" option (or whatever > we call it) can just run a script that creates what currently is the > login account or gives options to change the password or disable the > account. > > At the very least, we ought to have a huge bold red underlined blinking > sign in the Readme file that says that the password should be changed > and instructions for how to change the password. >
Sure, I agree. Make a trac ticket and clarify precisely what you think would be best. William --~--~---------~--~----~------------~-------~--~----~ To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/sage-devel URLs: http://www.sagemath.org -~----------~----~----~----~------~----~------~--~---
