PermitRootLogin check is inaccurate
Updated a few more boxes using the eleevate from centos7 to OS AlmaLinux v8.8.0 and cPanel Version 114.0.11and hardening a few things. Security adviser keeps saying:
Manually edit /etc/ssh/sshd_config and change PermitRootLogin to "without-password" or "no", then restart SSH in the "Restart SSH" area
We have set it to without-password BUT still reporting this warning.
A similar thread from a good feew years ago (didnt want to post in such an old thread, should I have?)
-
SOLVED! There is 2 sections with the: PermitRootLogin option. 1 under At=uthentication (at the top) and another way at the botton under the Set this to 'yes' to enable PAM authentication section. Changing that too fixed. Not sure why it didnt accept the first as the second is for PAM access... 0 -
If you have "PermitRootLogin" set in 2 lines the last one is used. In sshd_config there are no "sections", just settings. 0
Please sign in to leave a comment.
Comments
2 comments