5527d0df46
This commit fixes a security vulnerability found by a NESSUS Scan in the sshd configuration. The ssh login as root is allowed in "/etc/ssh/sshd_config" due to "PermitRootLogin" set to "yes". It should be disallowed, and the setting of "PermitRootLogin" should be "no". The fix is to remove the section pertaining to "Allow root ssh login" in "base_bullseye.yaml", which is a leftover cleanup from the Debian integration. Test Plan: PASS: Verify the stx build installs correctly in an AIO-SX system configuration. PASS: Verify the "PermitRootLogin" is set to "no" in "/etc/ssh/sshd_config" file. PASS: Verify that remote ssh as user root is not successful. Closes-Bug: 2051473 Signed-off-by: Carmen Rata <carmen.rata@windriver.com> Change-Id: Iee29cf2d5ade6268dcafcb0f3eb12d5f9afefc88 |
||
|---|---|---|
| .. | ||
| common | ||
| compiler | ||
| containers | ||
| distro | ||
| flock | ||
| openstack | ||