Description of problem: /etc/ssh/sshd_config has PermitRootLogin without-password I believe that is a Security problem. :( If that comes from the vendor, they need to be informed ASAP. "man sshd"_config says PermitRootLogin default is yes. I agree with man page. Change /etc/ssh/sshd_config by removing PermitRootLogin or change it to PermitRootLogin yes Version-Release number of selected component (if applicable): How reproducible: Always Steps to Reproduce: 1. grep /etc/ssh/sshd_config PermitRootLogin 2. 3.
False alarm. You will be asked for password if key is in /root/.ssh Might I suggest a comment added to /etc/ssh/sshd_config about Mageia change with something to the effect password required if key not in ~/.ssh That will keep idiots like me from opening problem reports. :)
Severity: normal => enhancement
> PermitRootLogin > Specifies whether root can log in using ssh(1). The argument > must be âyesâ, âwithout-passwordâ, âforced-commands-onlyâ, or > ânoâ. The default is âyesâ. > > If this option is set to âwithout-passwordâ, password authenticaâ > tion is disabled for root. > > If this option is set to âforced-commands-onlyâ, root login with > public key authentication will be allowed, but only if the > command option has been specified (which may be useful for taking > remote backups even if root login is normally not allowed). All > other authentication methods are disabled for root. > > If this option is set to ânoâ, root is not allowed to log in. You want to allow password authentication. That is *very* bad for security. It will allow all the brute force attacks. Our default is more secure, not less.
Status: NEW => RESOLVEDCC: (none) => olavResolution: (none) => INVALID