diff options
author | Christian Poessinger <christian@poessinger.com> | 2018-10-21 20:03:13 +0200 |
---|---|---|
committer | Christian Poessinger <christian@poessinger.com> | 2018-10-21 20:02:53 +0200 |
commit | b001ad373219df7b460ae5dc86d7a511fe5cc3dd (patch) | |
tree | ea1520b9d15a9981ea93cb3ac5efe34e10634c46 /src/conf_mode | |
parent | 46edebcec49ab8f0aafe54b8350f37bd331e8ce6 (diff) | |
download | vyos-1x-b001ad373219df7b460ae5dc86d7a511fe5cc3dd.tar.gz vyos-1x-b001ad373219df7b460ae5dc86d7a511fe5cc3dd.zip |
T634: remove 'service ssh allow-root'
(cherry picked from commit 9cf0514668b1461d3b74076b99c9edabafa10418)
Diffstat (limited to 'src/conf_mode')
-rwxr-xr-x | src/conf_mode/ssh.py | 6 |
1 files changed, 1 insertions, 5 deletions
diff --git a/src/conf_mode/ssh.py b/src/conf_mode/ssh.py index beca7bb9a..9b6c5cea5 100755 --- a/src/conf_mode/ssh.py +++ b/src/conf_mode/ssh.py @@ -73,7 +73,7 @@ Port {{ port }} LogLevel {{ log_level }} # Specifies whether root can log in using ssh -PermitRootLogin {{ allow_root }} +PermitRootLogin no # Specifies whether password authentication is allowed PasswordAuthentication {{ password_authentication }} @@ -142,7 +142,6 @@ DenyGroups {{ deny_groups | join(" ") }} default_config_data = { 'port' : '22', 'log_level': 'INFO', - 'allow_root': 'no', 'password_authentication': 'yes', 'host_validation': 'yes' } @@ -171,9 +170,6 @@ def get_config(): deny_groups = conf.return_values('access-control deny group') ssh['deny_groups'] = deny_groups - if conf.exists('allow-root'): - ssh['allow-root'] = 'yes' - if conf.exists('ciphers'): ciphers = conf.return_values('ciphers') ssh['ciphers'] = ciphers |