diff options
| author | Colin Watson <cjwatson@debian.org> | 2017-03-05 02:02:11 +0000 |
|---|---|---|
| committer | Colin Watson <cjwatson@debian.org> | 2017-03-29 15:32:34 +0100 |
| commit | ec338656a3d6b21bb87f3b6367b232d297f601e5 (patch) | |
| tree | 64e3724e15a2bdc27248e1825d4ebfdf67d4ddf3 | |
| parent | 417f561eac9f391661ad23a27f1d711f56566176 (diff) | |
Restore reading authorized_keys2 by default
Upstream seems to intend to gradually phase this out, so don't assume
that this will remain the default forever. However, we were late in
adopting the upstream sshd_config changes, so it makes sense to extend
the grace period.
Bug-Debian: https://bugs.debian.org/852320
Forwarded: not-needed
Last-Update: 2017-03-05
Patch-Name: restore-authorized_keys2.patch
| -rw-r--r-- | sshd_config | 5 |
1 files changed, 2 insertions, 3 deletions
diff --git a/sshd_config b/sshd_config index 928229594..a32dc1d46 100644 --- a/sshd_config +++ b/sshd_config | |||
| @@ -36,9 +36,8 @@ | |||
| 36 | 36 | ||
| 37 | #PubkeyAuthentication yes | 37 | #PubkeyAuthentication yes |
| 38 | 38 | ||
| 39 | # The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2 | 39 | # Expect .ssh/authorized_keys2 to be disregarded by default in future. |
| 40 | # but this is overridden so installations will only check .ssh/authorized_keys | 40 | #AuthorizedKeysFile .ssh/authorized_keys .ssh/authorized_keys2 |
| 41 | AuthorizedKeysFile .ssh/authorized_keys | ||
| 42 | 41 | ||
| 43 | #AuthorizedPrincipalsFile none | 42 | #AuthorizedPrincipalsFile none |
| 44 | 43 | ||