Re: [linux] is there an "include" directive for /etc/sshd_config?
I checked on RHEL8 and see no evidence of this on the server side unfortunately To unsubscribe send a blank message to linux+unsubscr...@linux-ottawa.org To get help send a blank message to linux+h...@linux-ottawa.org To visit the archives: https://lists.linux-ottawa.org
Re: [linux] is there an "include" directive for /etc/sshd_config?
Oh I missed the missing d in there - you're right! I wonder whether it is the same for both. Is CentOS 8 new enough to have it? I will try to remember at work tomorrow where I have RHEL8 on my desktop. To unsubscribe send a blank message to linux+unsubscr...@linux-ottawa.org To get help send a blank message to linux+h...@linux-ottawa.org To visit the archives: https://lists.linux-ottawa.org
Re: [linux] is there an "include" directive for /etc/sshd_config?
On Sun, 1 Mar 2020, Alan McKay wrote: > I don't think there are any obvious security reasons not to support > it of course you never know what goes through the mind of the > OpenBSD team. > > I've never used it but yeah it sure would be useful because > including is way easier than editing in place. What we've always > done is deploy from svn/git with a templating system like Maven > which works really well. > > Now all that said I was curious and googled, and it looks like this > is something new > > https://superuser.com/questions/247564/is-there-a-way-for-one-ssh-config-file-to-include-another-one interesting, but that entire page seems related to ssh_config, not sshd_config. i would think that allowing Includes for client configuration would be safer than for server configuration. rday To unsubscribe send a blank message to linux+unsubscr...@linux-ottawa.org To get help send a blank message to linux+h...@linux-ottawa.org To visit the archives: https://lists.linux-ottawa.org
Re: [linux] is there an "include" directive for /etc/sshd_config?
I don't think there are any obvious security reasons not to support it of course you never know what goes through the mind of the OpenBSD team. I've never used it but yeah it sure would be useful because including is way easier than editing in place. What we've always done is deploy from svn/git with a templating system like Maven which works really well. Now all that said I was curious and googled, and it looks like this is something new https://superuser.com/questions/247564/is-there-a-way-for-one-ssh-config-file-to-include-another-one I have Ubuntu 18.04 at my fingertips and it does not exist there. To unsubscribe send a blank message to linux+unsubscr...@linux-ottawa.org To get help send a blank message to linux+h...@linux-ottawa.org To visit the archives: https://lists.linux-ottawa.org
[linux] is there an "include" directive for /etc/sshd_config?
currently, in a number of embedded systems i'm working with, in setting up the target's sshd, the installed /etc/sshd_config file is adjusted as needed by manually hacking the file with things like sed, as in: # allow root login sed -i 's#.*PermitRootLogin.*#PermitRootLogin yes#' ${D}${sysconfdir}/ssh/sshd_config # disable DNS lookups sed -i 's#.*UseDNS.*#UseDNS no#' ${D}${sysconfdir}/ssh/sshd_config this all works fine, but does sshd_config support any sort of include directive so i could just "include" or "require" my local tweaks? i've looked, didn't see it, and suspect that's not supported for obvious security reasons, but i just thought i'd ask in case i overlooked something. rday To unsubscribe send a blank message to linux+unsubscr...@linux-ottawa.org To get help send a blank message to linux+h...@linux-ottawa.org To visit the archives: https://lists.linux-ottawa.org