By default the root ssh is disabled. If a dedicated server x somewhere far far away doesn't have root ssh enabled the admin is pretty much screwed if they hack his user account and change the user password right ? So is it not better to enable it by default ?