[LRUG] Dedicated servers in the UK?

Graham Ashton graham at effectif.com
Tue Jul 3 05:12:28 PDT 2012


On 3 Jul 2012, at 12:51, John Arundel <john at bitfieldconsulting.com> wrote:

> Now, when you spin up a new Rackspace cloud instance behind their load balancer, their automated config tool needs to log in to the box as root, so you have to enable root logins. It can't use an SSH key, so you have to enable password logins. It needs to be added to the list of allowed users, and the username is always the same for all customers, so it's a known account that can be dictionary attacked.

I'm amazed by that. Rightly or wrongly, I've now pigeon holed RackSpace.

Cheers for the write up John.


More information about the Chat mailing list