diff options
author | Stephen Hemminger <stephen.hemminger@vyatta.com> | 2010-11-16 11:29:38 -0800 |
---|---|---|
committer | Stephen Hemminger <stephen.hemminger@vyatta.com> | 2010-11-16 15:38:10 -0800 |
commit | 8960375b2a9f11d413152b67f81ca765b157c711 (patch) | |
tree | 29f906173a5264dea02f4d5d301c40d0a2e89b38 /scripts | |
parent | aa5623e32defe0412c47e38dbf9de5ed2448a975 (diff) | |
download | vyatta-cfg-system-8960375b2a9f11d413152b67f81ca765b157c711.tar.gz vyatta-cfg-system-8960375b2a9f11d413152b67f81ca765b157c711.zip |
Add option to disable host validation (DNS) for SSH
Bug 4970
New CLI control of UseDNS option to sshd_config
set service ssh disable-host-validation
Diffstat (limited to 'scripts')
-rwxr-xr-x | scripts/rl-system.init | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/scripts/rl-system.init b/scripts/rl-system.init index 038653fe..fc328b7b 100755 --- a/scripts/rl-system.init +++ b/scripts/rl-system.init @@ -176,11 +176,13 @@ security_reset () { rm /usr/share/pam-configs/radius fi - # Disable root login with ssh - sed -i -e '/^PermitRootLogin/s/yes/no/' /etc/ssh/sshd_config - # Disable root login over telnet sed -i -e '/^# Pseudo-terminal (telnet)/,$d' /etc/securetty + + # Disable root login with ssh + # Renable DNS validation + sed -i -e '/^PermitRootLogin/s/yes/no/' \ + -e '/^UseDNS/s/no/yes/' /etc/ssh/sshd_config } start () { |