From 9cf0514668b1461d3b74076b99c9edabafa10418 Mon Sep 17 00:00:00 2001
From: Christian Poessinger <christian@poessinger.com>
Date: Sun, 21 Oct 2018 20:03:13 +0200
Subject: T634: remove 'service ssh allow-root'

---
 src/conf_mode/ssh.py | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'src/conf_mode/ssh.py')

diff --git a/src/conf_mode/ssh.py b/src/conf_mode/ssh.py
index b681acea3..2a5cba99a 100755
--- a/src/conf_mode/ssh.py
+++ b/src/conf_mode/ssh.py
@@ -79,7 +79,7 @@ Port {{ port }}
 LogLevel {{ log_level }}
 
 # Specifies whether root can log in using ssh
-PermitRootLogin {{ allow_root }}
+PermitRootLogin no
 
 # Specifies whether password authentication is allowed
 PasswordAuthentication {{ password_authentication }}
@@ -164,7 +164,6 @@ ClientAliveInterval {{ client_keepalive }}
 default_config_data = {
     'port' : '22',
     'log_level': 'INFO',
-    'allow_root': 'no',
     'password_authentication': 'yes',
     'host_validation': 'yes'
 }
@@ -193,9 +192,6 @@ def get_config():
         deny_groups = conf.return_values('access-control deny group')
         ssh['deny_groups'] =  deny_groups
 
-    if conf.exists('allow-root'):
-        ssh['allow-root'] = 'yes'
-
     if conf.exists('ciphers'):
         ciphers = conf.return_values('ciphers')
         ssh['ciphers'] =  ciphers
-- 
cgit v1.2.3