Bug#865972: #865972 - same problem of false positive regarding PermitRootLogin parameter

Subject: Bug#865972: #865972 - same problem of false positive regarding PermitRootLogin parameter
From: francois@debian.org (Francois Marier)
Date: Wed, 9 Aug 2017 11:03:57 -0700
Message-id: <[🔎] 20170809180357.4stiwpibiaztazbp@akranes.dyndns.org>
In-reply-to: <[🔎] 20170808185725.2857fc8f2bfb9a22f04f3147@6jf.be>
References: <[🔎] d1a4f6c6-11e4-6940-f490-99c9d71f064e@gmail.com> <[🔎] 20170808185725.2857fc8f2bfb9a22f04f3147@6jf.be>

On 2017-08-08 at 18:57:25, Jean-Marc wrote:
> So, if the default value "prohibit-password" is secure enough, maybe changing this line
> 
> ALLOW_SSH_ROOT_USER=unset
> 
> can solve this.

It looks fine to me, but I'm not entirely sure that we should stop
recommending that root logins be disabled.

Also, if we disable the check, then it won't warn if someone has root logins
enabled with passwords.

I will leave it as it is for now.

Francois

-- 
https://fmarier.org/

Reply to:

References:
- Bug#865972: #865972
  - From: mitsosgtir@gmail.com (Demetris Demetriou)
- Bug#865972: #865972 - same problem of false positive regarding PermitRootLogin parameter
  - From: jean-marc@6jf.be (Jean-Marc)

Prev by Date: Actualice su cuenta de zimbra
Next by Date: Processing of rkhunter_1.4.4-3_amd64.changes
Previous by thread: Bug#865972: #865972 - same problem of false positive regarding PermitRootLogin parameter
Next by thread: Processing of libnids_1.24-1_source.changes
Index(es):
- Date
- Thread