Bug 1173067 - AUDIT-FIND: openssh: change PermitRootLogin config option away from "yes"
AUDIT-FIND: openssh: change PermitRootLogin config option away from "yes"
Status: NEW
Classification: Novell Products
Product: SUSE Security Incidents
Classification: Novell Products
Component: Audits
unspecified
Other All
: P5 - None : Normal
: ---
Assigned To: Hans Petter Jansson
Security Team bot
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2020-06-17 11:34 UTC by Johannes Segitz
Modified: 2021-02-18 15:29 UTC (History)
0 users

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---


Attachments

Note You need to log in before you can comment on or make changes to this bug.
Description Johannes Segitz 2020-06-17 11:34:10 UTC
While reviewing the new Leap 15.2 I noticed that we have 
PermitRootLogin yes
in the sshd_config because of 
openssh-7.7p1-allow_root_password_login.patch

I don't think it makes sense to remove this for this Leap update, but we should remove this in Factory so that our next product has a better default security stance (e.g. prohibit-password)
Comment 1 Johannes Segitz 2020-12-01 09:43:43 UTC
ping. can we please change that in Factory?
Comment 2 Johannes Segitz 2021-02-18 15:29:08 UTC
I submitted the change to Factory