Date: Tue, 02 Feb 2016 10:58:48 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Bryan Drewery <bdrewery@FreeBSD.org> Cc: src-committers@freebsd.org, svn-src-all@freebsd.org, svn-src-head@freebsd.org Subject: Re: svn commit: r294464 - in head: crypto/openssh crypto/openssh/contrib/redhat crypto/openssh/contrib/suse crypto/openssh/openbsd-compat crypto/openssh/regress crypto/openssh/regress/unittests crypto/... Message-ID: <86r3gvwi07.fsf@desk.des.no> In-Reply-To: <56AFC036.6080508@FreeBSD.org> (Bryan Drewery's message of "Mon, 1 Feb 2016 12:29:42 -0800") References: <201601202257.u0KMvA89056089@repo.freebsd.org> <56AFC036.6080508@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Bryan Drewery <bdrewery@FreeBSD.org> writes: > Dag-Erling Sm=C3=B8rgrav <des@FreeBSD.org> wrote: > > -#PermitRootLogin no > > +#PermitRootLogin prohibit-password > Shouldn't the comments note the default? The default here is still > 'no'. Yes, I kept our local modification but somehow either didn't notice the comment or resolved the conflict incorrectly. > Upstream 7.1p2 does use PERMIT_NO_PASSWD rather than PERMIT_NO that we > have. I think we should make this change: We've always had this turned off, while upstream had it on by default. The new default doesn't work correctly with PAM, and the fix is not trivial. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?86r3gvwi07.fsf>