Project

General

Profile

Actions

Bug #691

closed

Unchecking 'Disable password login for Secure Shell (RSA key only)' Required Reboot to Apply

Added by Steve Vigneau over 14 years ago. Updated over 14 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
Operating System
Target version:
Start date:
06/23/2010
Due date:
% Done:

100%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.0
Affected Architecture:

Description

During some testing I checked 'Disable password login for Secure Shell (RSA key only)' and clicked Save, and sshd restarted as expected, no longer accepting passwords. Once done with this testing I unchecked the box and hit save, but the PasswordAuthentication option did not get set until a restart.

For reference, this is the /etc/ssh/sshd_config after unchecking the box and clicking save:

$ cat /etc/ssh/sshd_config
  1. This file is automatically generated at startup
    Ciphers aes128-ctr,aes256-ctr,arcfour256,arcfour,aes128-cbc,aes256-cbc
    PermitRootLogin yes
    Compression yes
    ClientAliveInterval 30
    UseDNS no
    X11Forwarding no
  2. Login via Key only
    PasswordAuthentication no
    ChallengeResponseAuthentication no
    PubkeyAuthentication yes
  3. override default of no subsystems
    Subsystem sftp /usr/libexec/sftp-server
    Protocol 2
    Port 22

After reboot:

$ cat /etc/ssh/sshd_config
  1. This file is automatically generated at startup
    Ciphers aes128-ctr,aes256-ctr,arcfour256,arcfour,aes128-cbc,aes256-cbc
    PermitRootLogin yes
    Compression yes
    ClientAliveInterval 30
    UseDNS no
    X11Forwarding no
  2. Login via Key and Password
    PasswordAuthentication yes
    ChallengeResponseAuthentication yes
    PubkeyAuthentication yes
  3. override default of no subsystems
    Subsystem sftp /usr/libexec/sftp-server
    Protocol 2
    Port 22

This is on:

2.0-BETA3
built on Wed Jun 23 04:36:23 EDT 2010
FreeBSD 8.1-RC1

Actions

Also available in: Atom PDF