F22 System Wide Change: Set sshd(8) PermitRootLogin=no
Reindl Harald
h.reindl at thelounge.net
Fri Jan 9 14:22:10 UTC 2015
Am 09.01.2015 um 15:14 schrieb Paul Wouters:
> If your public key authentication fails, it still prompts you for a
> password but even if you have set a password it will reject it. This is
> to prevent leaking configuration information (eg to avoid telling
> attackers whether or not password based logins are allowed in the
> machine)
not true if your server is correctly configured and enforces key-auth
[root at rawhide ~]# ssh root at local.rhsoft.net
Permission denied (publickey).
[root at rawhide ~]#
PasswordAuthentication no
ChallengeResponseAuthentication no
GSSAPIAuthentication no
GSSAPICleanupCredentials no
X11Forwarding no
RSAAuthentication yes
PubkeyAuthentication yes
PermitEmptyPasswords no
PermitRootLogin without-password
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 181 bytes
Desc: OpenPGP digital signature
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20150109/953a2b46/attachment.sig>
More information about the devel
mailing list