[Bug 2164] PermitRootLogin=without-password as default

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Tue Apr 28 20:50:39 AEST 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2164

--- Comment #3 from Damien Miller <djm at mindrot.org> ---
Using 'no' removes the possibility of running any of the
authorized_keys parsing code at root in the preauth path, so it removes
a bit of attack surface.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list