remove password based login for root #936

AI-WAIFU · 2023-05-14T20:48:14Z

Removes password based login for root, this should fix the security issues we've been having.

ShivanshuPurohit · 2023-05-14T20:56:27Z

Dockerfile

 RUN mkdir /var/run/sshd && \
- echo "root:${PASSWORD}" | chpasswd && \
- # Allow root login with password
- sed -i 's/#PermitRootLogin prohibit-password/PermitRootLogin yes/' /etc/ssh/sshd_config && \
 # Prevent user being kicked off after login
 sed -i 's@session\s*required\s*pam_loginuid.so@session optional pam_loginuid.so@g' /etc/pam.d/sshd && \
 echo 'AuthorizedKeysFile .ssh/authorized_keys' >> /etc/ssh/sshd_config && \


echo 'PasswordAuthentication yes' >> /etc/ssh/sshd_config && \
should this stay?

Yes, because right now our current infra assumes that you can log in with a password. I need to change that before removing this line.

remove password based login for root

b192e18

AI-WAIFU requested review from Quentin-Anthony and ShivanshuPurohit May 14, 2023 20:48

AI-WAIFU requested a review from a team as a code owner May 14, 2023 20:48

Update NeoXArgs docs automatically

5c4b51b

ShivanshuPurohit approved these changes May 14, 2023

View reviewed changes

ShivanshuPurohit merged commit 9a18727 into main May 14, 2023
2 checks passed

ShivanshuPurohit deleted the remove-default-password branch May 14, 2023 21:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

remove password based login for root #936

remove password based login for root #936

AI-WAIFU commented May 14, 2023

ShivanshuPurohit May 14, 2023

AI-WAIFU May 14, 2023

remove password based login for root #936

remove password based login for root #936

Conversation

AI-WAIFU commented May 14, 2023

ShivanshuPurohit May 14, 2023

Choose a reason for hiding this comment

AI-WAIFU May 14, 2023

Choose a reason for hiding this comment