From ec515b52b681cd96bf51626bf899e3177bdbe3f3 Mon Sep 17 00:00:00 2001 From: Stephen Hemminger Date: Sun, 24 Jan 2010 22:15:27 -0800 Subject: Fix allow-root for telnet/ssh Bug 5252 The boot script needs to restore default settings, and the templates are then used to enable root access. --- debian/vyatta-cfg-system.postinst.in | 2 ++ 1 file changed, 2 insertions(+) (limited to 'debian/vyatta-cfg-system.postinst.in') diff --git a/debian/vyatta-cfg-system.postinst.in b/debian/vyatta-cfg-system.postinst.in index 1e77d69d..f06bfb50 100644 --- a/debian/vyatta-cfg-system.postinst.in +++ b/debian/vyatta-cfg-system.postinst.in @@ -45,6 +45,8 @@ if [ "$sysconfdir" != "/etc" ]; then # enable ssh banner sed -i 's/^#Banner/Banner/' /etc/ssh/sshd_config + # make sure PermitRoot is off + sed -i '/^PermitRootLogin/s/yes/no' /etc/ssh/sshd_config # for "admin" level sed -i 's/^# %sudo ALL=NOPASSWD: ALL/%sudo ALL=NOPASSWD: ALL/' /etc/sudoers -- cgit v1.2.3