Re: Review for "PermitRootLogin without-password" change

To: debian-ssh@lists.debian.org
Subject: Re: Review for "PermitRootLogin without-password" change
From: Matthew Vernon <matthewv@chiark.greenend.org.uk>
Date: 25 Mar 2014 15:08:18 +0000
Message-id: <[🔎] 5br45qz57h.fsf@chiark.greenend.org.uk>
In-reply-to: <[🔎] 20140320014833.GC32733@riva.ucam.org>
References: <[🔎] 20140320014833.GC32733@riva.ucam.org>

Colin Watson <cjwatson@debian.org> writes:

> After (how can I put it) extensive and heated discussion over many
> years, I intend to change sshd_config in new installations of
> openssh-server to use "PermitRootLogin without-password" rather than
> "PermitRootLogin yes".  

How are we going to deal with the bootstrapping problem? i.e. how are
we expecting people to populate /root/.ssh/authorized_keys for new
installs? 

Regards,

Matthew

-- 
"At least you know where you are with Microsoft."
"True. I just wish I'd brought a paddle."
http://www.debian.org

Reply to:

Follow-Ups:
- Re: Review for "PermitRootLogin without-password" change
  - From: Colin Watson <cjwatson@debian.org>

References:
- Review for "PermitRootLogin without-password" change
  - From: Colin Watson <cjwatson@debian.org>

Prev by Date: Bug#742513: [PATCH] Attempt SSHFP lookup even if server presents a certificate
Next by Date: Processed: user debian-security@lists.debian.org, usertagging 742513 ...
Previous by thread: Re: Review for "PermitRootLogin without-password" change
Next by thread: Re: Review for "PermitRootLogin without-password" change
Index(es):
- Date
- Thread