On Mon, Nov 9, 2015 at 8:38 PM, Michael Orlitzky <m...@gentoo.org> wrote:
> A major upgrade to OpenSSH is being stabilized:
>
>   https://bugs.gentoo.org/show_bug.cgi?id=555518
>
> The default of PermitRootLogin for sshd in the new version is
> "prohibit-password". If you typically log in to the root account over
> SSH using a password, **IT'S GONNA BREAK**, and you won't be able to fix
> it remotely unless you have an account that can sudo to root.
>
> To maintain the current behavior, set PermitRootLogin to "yes" before
> you upgrade, and then be careful not to wipe out sshd_config.
>

Another issue is this news item that is now old but suddenly relevant:
https://www.gentoo.org/support/news-items/2015-08-13-openssh-weak-keys.html

We should probably rethink how we handle news items like this.

-- 
Rich

Reply via email to