Re: Announce: OpenSSH 6.9 released

[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

 



Philipp Marek <philipp.marek@xxxxxxxxxx> writes:

> > Future Deprecation Notice
> > =========================
> > 
> > The 7.0 release of OpenSSH, due for release in late July, will
> > deprecate several features, some of which may affect compatibility
> > or existing configurations. The intended changes are as follows:
> > 
> >  * The default for the sshd_config(5) PermitRootLogin option will
> >    change from "yes" to "no".
> Uh, wouldn't "without-password" be a better alternative than "no"?

I agree (quite strongly) - it's not like an admin is going to
accidentally set up an authorized_keys file for root. PermitRootLogin
without-password seems the correct default - it stops password-attacks
on root and makes it easy for admins to set up key-based access.

Regards,

Matthew 

-- 
"At least you know where you are with Microsoft."
"True. I just wish I'd brought a paddle."
http://www.debian.org
_______________________________________________
openssh-unix-dev mailing list
openssh-unix-dev@xxxxxxxxxxx
https://lists.mindrot.org/mailman/listinfo/openssh-unix-dev



[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux