You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Launchpad user Florian Apolloner(apollo13) wrote on 2020-04-09T16:53:41.587279+00:00
When ssh_authorized_keys is configured in user-data keys are unconditionally copied into /root/.ssh/authorized_keys.
If disable_root is set to true it leaks the actual configured username: "Please login as the user XYZ rather than the user root." With disable_root set to false you can login.
It would be great if there were a way to actually disable root and not touch it at all. I fully understand that the info message is useful for new users, but it would be great to have a way to leave root alone.
The text was updated successfully, but these errors were encountered:
Launchpad user Florian Apolloner(apollo13) wrote on 2020-04-14T15:31:08.351698+00:00
Hi Dan,
thanks for taking this into consideration. My gut-feeling would be an option ala "root_login_help_msg: <true|false>" (Naming is hard). Preferably I'd have it set to false by default but I doubt that will fly :D
This bug was originally filed in Launchpad as LP: #1871879
Launchpad details
Launchpad user Florian Apolloner(apollo13) wrote on 2020-04-09T16:53:41.587279+00:00
When
ssh_authorized_keys
is configured in user-data keys are unconditionally copied into /root/.ssh/authorized_keys.If
disable_root
is set to true it leaks the actual configured username: "Please login as the user XYZ rather than the user root." Withdisable_root
set to false you can login.It would be great if there were a way to actually disable root and not touch it at all. I fully understand that the info message is useful for new users, but it would be great to have a way to leave root alone.
The text was updated successfully, but these errors were encountered: