New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add a global setting to disable root login on local network #1551
Conversation
The current template use if/else/endif which introduce spurious empty lines. As the setting value is "yes" or "no", as expected by the configuration file, the value is directly use. All uses of passwordauthentication are addressed. This adds the one used for the sftp group. Finally, the global configuration sets the yes and no values to "yes" and "no" respectively. Currently, the value is set to "0" which breaks the configuration generation when "0" is compared to "False". Signed-off-by: Nicolas Palix <nicolas.palix@imag.fr>
A global setting name ssh_allow_root_on_localnet is added The old sshd_config template enable PermitRootLogin from client on the localnet. According to the server where Yunohost is deployed it doesn't make sense and could be a security issue when hosted on a 3rd party. Signed-off-by: Nicolas Palix <nicolas.palix@imag.fr>
Signed-off-by: Nicolas Palix <nicolas.palix@imag.fr>
Zblerg could you elaborate on the motivation behind having a setting to disable this ... I guess this is like to "harden security" but honestly meh, this exists as a good tradeoff between "not exposing root access" and "being able to access your server if LDAP is down for some reason", and I'm not looking forward to having posts on the forum about being locked out or their server because "yeah I disabled root login entirely because I thought this wasnt necessary" ... |
About harden security and SSH access, less is more. I prefer to have a clean and small SSH config file. It's simpler to review. What about something like "Caution: you can be lock out in case of LDAP crash. In that case, you will need a backup access, either with a local account or physically to the server." |
Closing because honestly meh:
Sorry for the rant but I already spent way too much time in the past on similar PRs with stuff like "I've heard somewhere that cipher X is more secure than Y" |
The problem
Solution
PR Status
First release and review
How to test
Play with the ssh settings.