Project

General

Profile

Actions
Copy link

Bug #8069

closed

ceph-deploy README suggests questionable SSH parameters

Added by Florian Haas about 10 years ago. Updated about 10 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
-
Category:
documentation
Target version:
-
% Done:

0%

Source:
Community (user)
Tags:
Backport:
Regression:
Severity:
3 - minor
Reviewed:
Affected Versions:
ceph-qa-suite:
Pull request ID:
Crash signature (v1):
Crash signature (v2):

Description

In README.rst in ceph-deploy, the following sshd options are suggested for any host to which ceph-deploy should connect:

PermitRootLogin yes
    PermitEmptyPasswords yes

That seems unnecessary, and specifically the PermitEmptyPasswords is rather blatantly insecure. I think this ought to be

PermitRootLogin without-password
    PubkeyAuthentication yes
Actions
Copy link

Also available in: Atom PDF