Comment 9 for bug 1576353
Revision history for this message
| Colin Watson (cjwatson) wrote Re: [Bug 1576353] Re: install openssh-server by default, prompt for enabling it on server iso install | #9 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
I'm not sure how that would make any difference at all. The problem is
that it's hard for sshd to maintain the necessary state across multiple
invocations when it's being invoked once per connection rather than
having a master process that can trivially keep track of all the
inter-connection state it needs.
Persisting the necessary state in the filesystem somewhere would no
doubt be in principle possible, but would require careful locking and
such, and would add more code to the pre-authentication attack surface.
Upstream is in general very cautious about such changes, and I think
rightly so. AFAICS even Fedora doesn't do this yet, and one would
normally expect them to be enthusiastic about pushing for
systemd-specific enhancements.