]> git.ipfire.org Git - people/pmueller/ipfire-2.x.git/commitdiff
projects / people / pmueller / ipfire-2.x.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 5bf8ff9)
ssh: Revert MaxAuthTries setting
authorMichael Tremer <michael.tremer@ipfire.org>
Tue, 25 Sep 2018 19:24:39 +0000 (20:24 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Tue, 25 Sep 2018 19:24:39 +0000 (20:24 +0100)
This is entirely not practicable and should have been changed
before. I missed this when I tested the configuration.

It is common that multiple SSH keys exist and three is common
number (RSA, ECDSA & Ed25519). A key passed with ssh -i and
password authentication are not even tried.

Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
config/ssh/sshd_config patch | blob | blame | history

diff --git a/config/ssh/sshd_config b/config/ssh/sshd_config
index 4a25e83838956d95a0b3d3f907b037f34abda44e..60bb0a9e635dc1797a2417036f8d074fc9415282 100644 (file)
--- a/config/ssh/sshd_config
+++ b/config/ssh/sshd_config
@@ -12,7 +12,7 @@ ListenAddress 0.0.0.0
 
 # limit authentication thresholds
 LoginGraceTime 30s
 
 # limit authentication thresholds
 LoginGraceTime 30s
-MaxAuthTries 3
+MaxAuthTries 6
 
 # limit maximum instanctes to prevent DoS
 MaxStartups 5
 
 # limit maximum instanctes to prevent DoS
 MaxStartups 5
Peter's tree of IPFire 2.x