[elbe-devel] [PATCH] initvm-ssh-root-open-danger: Move ssh config to preseed
bage at linutronix.de
bage at linutronix.de
Mon Nov 16 10:52:21 CET 2020
From: Bastian Germann <bage at linutronix.de>
Enabling root ssh logins can be preseeded.
Move the former finetuning rule of the initvm example to a preseed rule.
Signed-off-by: Bastian Germann <bage at linutronix.de>
---
elbepack/init/initvm-ssh-root-open-danger.xml | 5 ++---
1 file changed, 2 insertions(+), 3 deletions(-)
diff --git a/elbepack/init/initvm-ssh-root-open-danger.xml b/elbepack/init/initvm-ssh-root-open-danger.xml
index a449071a3..1c59288ea 100644
--- a/elbepack/init/initvm-ssh-root-open-danger.xml
+++ b/elbepack/init/initvm-ssh-root-open-danger.xml
@@ -46,14 +46,13 @@
</pkg-list>
<preseed>
<conf owner="pbuilder" key="pbuilder/mirrorsite" type="string" value="http://ftp.de.debian.org/debian"/>
+ <!-- See https://bugs.debian.org/837733 for this counter-intuitive setting -->
+ <conf owner="openssh-server" key="openssh-server/permit-root-login" type="boolean" value="false"/>
</preseed>
<size>80G</size>
<swap-size>10GiB</swap-size>
<img>qcow2</img>
<portforwarding>
</portforwarding>
- <finetuning>
- <command>sed -i -e 's/#PermitRootLogin prohibit-password/PermitRootLogin yes/' /etc/ssh/sshd_config</command>
- </finetuning>
</initvm>
</ns0:RootFileSystem>
--
2.29.2
More information about the elbe-devel
mailing list