Linux
[ubuntu] What does PermitRootLogin prohibit-password in SSH server mean?
MJSon
2017. 11. 20. 15:35
-

A Carafe of Ubuntu

- Join Date:
- Aug 2013
- Beans:
- 94
What does PermitRootLogin prohibit-password in SSH server mean?
I am quite confused about this entry in sshd_config.
Code:
# Authentication:
LoginGraceTime 120
PermitRootLogin prohibit-password
StrictModes yes
I have searched around but find the explanations confusing. What is "prohibit-password" for a root login in plain English?
What does one need to provide to access root@192.168.x.x?
Thanks!
-
- Join Date:
- Nov 2008
- Location:
- Metro Boston
- Beans:
- 12,891
- Distro:
- Kubuntu 14.04 Trusty Tahr
Re: What does PermitRootLogin prohibit-password in SSH server mean?
A quick Google search brings up this:
Code:
* The default for the sshd_config(5) PermitRootLogin option has
changed from "yes" to "prohibit-password".
* PermitRootLogin=without-password/prohibit-password now bans all
interactive authentication methods, allowing only public-key,
hostbased and GSSAPI authentication (previously it permitted
keyboard-interactive and password-less authentication if those
were enabled).
With that configuration you cannot login in as root with a password. Use keys instead.