Re: Abotu setting 'PermitRootLogin=no' in sshd_config

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On Tue, 25 Nov 2014 17:05:59 +0000 (UTC)
P J P <pj.pandit@xxxxxxxxxxx> wrote:

>   Hi,
> 
> > On Tuesday, 25 November 2014 10:00 PM, Gabriel Ramirez wrote:
> > I have a server which only runs several VM's with specific
> > services,  no need user accounts in the host or in the VM's,
> > 
> > so you propose when I reiinstall any of them create a user account
> > in each of them, that will cause boot the first time change to
> > permit root login and delete the *forced* user account
> > 
> > and the server is hosted remotely, so if anything is wrong with it
> > I can only access via ssh so this *feature change* is no simple,
> 
> 
>   True, it is complex.
> 
> Maybe we could have an option in firstboot(and other such places) by
> which user can override the default non-root account creation. Ie.
> Say a user is prompted to create non-root user account; He/she can
> choose to override it and not create one. In such workflow, he/she is
> warned about the possible lockout situation and duly advised to
> explicitly enable remote root login in sshd_config(5).
> 
> (Just a thought)

If the user is not created you do not change the sshd_config defaults
and let root log in.
Simple, and does not break current kickstarts.

Simo.

-- 
Simo Sorce * Red Hat, Inc * New York
-- 
devel mailing list
devel@xxxxxxxxxxxxxxxxxxxxxxx
https://admin.fedoraproject.org/mailman/listinfo/devel
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct





[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Fedora Announce]     [Fedora Kernel]     [Fedora Testing]     [Fedora Formulas]     [Fedora PHP Devel]     [Kernel Development]     [Fedora Legacy]     [Fedora Maintainers]     [Fedora Desktop]     [PAM]     [Red Hat Development]     [Gimp]     [Yosemite News]
  Powered by Linux