[BlueOnyx:21579] Re: ssh root login?
Michael Stauber
mstauber at blueonyx.it
Thu Dec 14 03:26:04 -05 2017
Hi Dirk,
> on some 5209R servers we see in the /etc/ssh/sshd_config at the bottom
>
> [...]
> AllowTcpForwarding no
> Protocol 2
> PermitRootLogin yes
>
> Why is PermitRootLogin set to yes?
> The default was/is "no".
>
> @Michael: did you send any update which adds the PermitRootLogin yes to the bottom of the file?
There hasn't been an update to that mechanism in a very long time,
because it works like a charm.
If the checkbox for "Allow SSH root login" is ticked, then the line
"PermitRootLogin yes" will be added to /etc/ssh/sshd_config. If it's not
ticked, it'll change it to "PermitRootLogin no" instead. Which indeed is
the default.
So please check your SSH settings in the GUI to see if the checkbox is
ticked, which it perhaps is.
The way the handler that does the editing works is this: It's given an
array of parameters (and values for it). If the parameter is not present
in a config file, then the parameter (and the corresponding value) is
added. If the parameter is already present (and not commented out), then
the value for it will be set to the one we want.
Hence every parameter that's not already present in the config file will
be added at the bottom. Such as AllowTcpForwarding, the Protocol and
PermitRootLogin.
--
With best regards
Michael Stauber
More information about the Blueonyx
mailing list