Bug#865972: #865972 - same problem of false positive regarding PermitRootLogin parameter
francois at debian.org
Wed Aug 9 18:03:57 UTC 2017
On 2017-08-08 at 18:57:25, Jean-Marc wrote:
> So, if the default value "prohibit-password" is secure enough, maybe changing this line
> can solve this.
It looks fine to me, but I'm not entirely sure that we should stop
recommending that root logins be disabled.
Also, if we disable the check, then it won't warn if someone has root logins
enabled with passwords.
I will leave it as it is for now.
More information about the forensics-devel