summaryrefslogtreecommitdiff
path: root/src/conf_mode
diff options
context:
space:
mode:
authorChristian Poessinger <christian@poessinger.com>2018-10-21 20:03:13 +0200
committerChristian Poessinger <christian@poessinger.com>2018-10-21 20:02:53 +0200
commitb001ad373219df7b460ae5dc86d7a511fe5cc3dd (patch)
treeea1520b9d15a9981ea93cb3ac5efe34e10634c46 /src/conf_mode
parent46edebcec49ab8f0aafe54b8350f37bd331e8ce6 (diff)
downloadvyos-1x-b001ad373219df7b460ae5dc86d7a511fe5cc3dd.tar.gz
vyos-1x-b001ad373219df7b460ae5dc86d7a511fe5cc3dd.zip
T634: remove 'service ssh allow-root'
(cherry picked from commit 9cf0514668b1461d3b74076b99c9edabafa10418)
Diffstat (limited to 'src/conf_mode')
-rwxr-xr-xsrc/conf_mode/ssh.py6
1 files changed, 1 insertions, 5 deletions
diff --git a/src/conf_mode/ssh.py b/src/conf_mode/ssh.py
index beca7bb9a..9b6c5cea5 100755
--- a/src/conf_mode/ssh.py
+++ b/src/conf_mode/ssh.py
@@ -73,7 +73,7 @@ Port {{ port }}
LogLevel {{ log_level }}
# Specifies whether root can log in using ssh
-PermitRootLogin {{ allow_root }}
+PermitRootLogin no
# Specifies whether password authentication is allowed
PasswordAuthentication {{ password_authentication }}
@@ -142,7 +142,6 @@ DenyGroups {{ deny_groups | join(" ") }}
default_config_data = {
'port' : '22',
'log_level': 'INFO',
- 'allow_root': 'no',
'password_authentication': 'yes',
'host_validation': 'yes'
}
@@ -171,9 +170,6 @@ def get_config():
deny_groups = conf.return_values('access-control deny group')
ssh['deny_groups'] = deny_groups
- if conf.exists('allow-root'):
- ssh['allow-root'] = 'yes'
-
if conf.exists('ciphers'):
ciphers = conf.return_values('ciphers')
ssh['ciphers'] = ciphers