Merge "[fedora-atomic][k8s]Disable ssh password authentication"
This commit is contained in:
commit
5ad2003cf6
@ -43,6 +43,9 @@ Host localhost
|
||||
EOF
|
||||
|
||||
sed -i '/^PermitRootLogin/ s/ .*/ without-password/' /etc/ssh/sshd_config
|
||||
# Security enhancement: Disable password authentication
|
||||
sed -i '/^PasswordAuthentication yes/ s/ yes/ no/' /etc/ssh/sshd_config
|
||||
|
||||
systemctl restart sshd
|
||||
|
||||
|
||||
|
@ -0,0 +1,6 @@
|
||||
---
|
||||
security:
|
||||
- |
|
||||
Regarding passwords, they could be guessed if there is no
|
||||
faild-to-ban-like solution. So it'd better to disable it for security
|
||||
reasons. It's only effected for fedora atomic images.
|
Loading…
x
Reference in New Issue
Block a user