F22 System Wide Change: Set sshd(8) PermitRootLogin=no

Fri Jan 9 14:22:10 UTC 2015

Am 09.01.2015 um 15:14 schrieb Paul Wouters:
> If your public key authentication fails, it still prompts you for a
> password but even if you have set a password it will reject it. This is
> to prevent leaking configuration information (eg to avoid telling
> attackers whether or not password based logins are allowed in the
> machine)

not true if your server is correctly configured and enforces key-auth

[root at rawhide ~]# ssh root at local.rhsoft.net
Permission denied (publickey).
[root at rawhide ~]#

PasswordAuthentication          no
ChallengeResponseAuthentication no
GSSAPIAuthentication            no
GSSAPICleanupCredentials        no
X11Forwarding                   no
RSAAuthentication               yes
PubkeyAuthentication            yes
PermitEmptyPasswords            no
PermitRootLogin                 without-password

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20150109/953a2b46/attachment.sig>