Actions
Bug #8069
closedceph-deploy README suggests questionable SSH parameters
Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
documentation
Target version:
-
% Done:
0%
Source:
Community (user)
Tags:
Backport:
Regression:
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):
Description
In README.rst in ceph-deploy, the following sshd options are suggested for any host to which ceph-deploy should connect:
PermitRootLogin yes
PermitEmptyPasswords yes
That seems unnecessary, and specifically the PermitEmptyPasswords is rather blatantly insecure. I think this ought to be
PermitRootLogin without-password
PubkeyAuthentication yes
Actions