Abotu setting 'PermitRootLogin=no' in sshd_config
Tomas Hozza
thozza at redhat.com
Fri Nov 21 09:37:16 UTC 2014
On 11/21/2014 09:04 AM, P J P wrote:
>> On Friday, 21 November 2014 1:24 PM, Florian Weimer wrote:
>
>>> On 11/21/2014 08:34 AM, Jan Kratochvil wrote:
>>> Almost all of my Fedora installations are test VMs where
>>> any security is irrelevant.
>
> Okay. But does enabling root login offer any significant benefit in that? IOW, if it's disabled by default, would it cause any significant inconvenience/troubles?? If not, it better be disabled by default.
For example for me it would be some inconvenience. I also use a lot of Fedora
VMs for
testing and none of them has regular user, just root.
However I can see the benefits of disabling root login by default. Especially
from the security point of view. I think it would be a good move.
Regards,
Tomas
>> I think it's a valid use case, but rather poorly supported at the
>> moment. For example, there should be completely seemless SSH login from
>> virt-manager for user-manageable virtual machines (both as root and the
>> user).
>>
>> My point is that once we address this (most likely through some
>> configuration generation during VM setup), we can also switch
>> PermitRootLogin on.
>
>
> You mean off? Or that we disable it by default and enable it while setting up a new VM?
>
> ---
> Regards
> -Prasad
> http://feedmug.com
>
More information about the devel
mailing list