/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication","no", "PermitRootLogin","no")); }
public void testLockSshdUNIX() { assertEquals(SshStatements.lockSshd().render(OsFamily.UNIX), new StringBuilder().append( "exec 3<> /etc/ssh/sshd_config && awk -v TEXT=\"")// .append("PasswordAuthentication no").append("\n")// .append("PermitRootLogin no").append("\n")// .append("\" 'BEGIN {print TEXT}{print}' /etc/ssh/sshd_config >&3").append("\n")// .append("hash service 2>&- && service ssh reload 2>&- || /etc/init.d/ssh* reload").append("\n").toString()); }
public void testLockSshdUNIX() { assertEquals(SshStatements.lockSshd().render(OsFamily.UNIX), new StringBuilder().append( "exec 3<> /etc/ssh/sshd_config && awk -v TEXT=\"")// .append("PasswordAuthentication no").append("\n")// .append("PermitRootLogin no").append("\n")// .append("\" 'BEGIN {print TEXT}{print}' /etc/ssh/sshd_config >&3").append("\n")// .append("hash service 2>&- && service ssh reload 2>&- || service sshd reload 2>&- || /etc/init.d/ssh* reload").append("\n").toString()); }
/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication","no", "PermitRootLogin","no")); }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication", "no", "PermitRootLogin", "no")); }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication", "no", "PermitRootLogin", "no")); }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication","no", "PermitRootLogin","no")); }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
/** * lock sshd down so root cannot login, and password auth is disabled, */ public static Statement lockSshd() { return sshdConfig(ImmutableMap.of("PasswordAuthentication", "no", "PermitRootLogin", "no")); }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
private static Statement disablePasswordBasedAuth() { return sshdConfig(ImmutableMap.of("PasswordAuthentication","no")); } }
statements.add(lockSshd()); if (config.shouldResetLoginPassword()) { statements.add(resetLoginUserPasswordTo(config.getCryptFunction(), config.getLoginPassword()));
private static Statement disablePasswordBasedAuth() { return sshdConfig(ImmutableMap.of("PasswordAuthentication","no")); } }
public void testSshdConfigUNIX() { assertEquals(SshStatements.sshdConfig(ImmutableMap.of("AddressFamily", "inet6")).render(OsFamily.UNIX), new StringBuilder().append("exec 3<> /etc/ssh/sshd_config && awk -v TEXT=\"")// .append("AddressFamily inet6").append("\n")// .append("\" 'BEGIN {print TEXT}{print}' /etc/ssh/sshd_config >&3").append("\n")// .append("hash service 2>&- && service ssh reload 2>&- || /etc/init.d/ssh* reload").append("\n").toString()); }
public void testSshdConfigUNIX() { assertEquals(SshStatements.sshdConfig(ImmutableMap.of("AddressFamily", "inet6")).render(OsFamily.UNIX), new StringBuilder().append("exec 3<> /etc/ssh/sshd_config && awk -v TEXT=\"")// .append("AddressFamily inet6").append("\n")// .append("\" 'BEGIN {print TEXT}{print}' /etc/ssh/sshd_config >&3").append("\n")// .append("hash service 2>&- && service ssh reload 2>&- || service sshd reload 2>&- || /etc/init.d/ssh* reload").append("\n").toString()); }