diff options
| author | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-08-06 14:53:22 +0000 |
|---|---|---|
| committer | Theo de Raadt <deraadt@cvs.openbsd.org> | 2015-08-06 14:53:22 +0000 |
| commit | 9221fa7212521e35bbba4d7108556dd6144068fd (patch) | |
| tree | 8ad8636565e6fa3a3a173716cec6f4363133c614 /usr.bin/ssh/sshd_config | |
| parent | abf3ce54d3d02a3eaf7c5535328f51eb7a8ef772 (diff) | |
add prohibit-password as a synonymn for without-password, since the
without-password is causing too many questions. Harden it to ban all
but pubkey, hostbased, and GSSAPI auth (when the latter is enabled)
from djm, ok markus
Diffstat (limited to 'usr.bin/ssh/sshd_config')
| -rw-r--r-- | usr.bin/ssh/sshd_config | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/usr.bin/ssh/sshd_config b/usr.bin/ssh/sshd_config index 2b014dedd74..4bf591ea12a 100644 --- a/usr.bin/ssh/sshd_config +++ b/usr.bin/ssh/sshd_config @@ -1,4 +1,4 @@ -# $OpenBSD: sshd_config,v 1.96 2015/07/30 19:23:02 deraadt Exp $ +# $OpenBSD: sshd_config,v 1.97 2015/08/06 14:53:21 deraadt Exp $ # This is the sshd server system-wide configuration file. See # sshd_config(5) for more information. @@ -39,7 +39,7 @@ # Authentication: #LoginGraceTime 2m -#PermitRootLogin without-password +#PermitRootLogin prohibit-password #StrictModes yes #MaxAuthTries 6 #MaxSessions 10 |