[Users] Ubuntu 18.04 default SSH config

Ivan Loginovskikh iloginovskikh at virtuozzo.com
Wed Jul 4 23:02:22 MSK 2018


Hello Paulo,

The fact that sshd_config has root login disabled is a bug, so we are going to fix that. There is already code in template’s post-install script to change PermitRootLogin, but it is not working. Thank you for reporting the problem!

The easiest way to make containers with the needed configuration is to create your own template, see https://docs.virtuozzo.com/virtuozzo_7_users_guide/advanced-tasks/creating-customized-containers.html#using-customized-ez-templates. Just copy the default config and add your changes into the post-install script.

By the way, with Virtuozzo license you can contact support https://www.virtuozzo.com/support/

From: users-bounces at openvz.org <users-bounces at openvz.org> On Behalf Of Paulo Coghi - Coghi IT
Sent: Wednesday, July 4, 2018 6:11 PM
To: users at openvz.org
Subject: [Users] Ubuntu 18.04 default SSH config

Hello everyone,
My name is Paulo Coghi and I am really happy to join the OpenVZ list. I am using OpenVZ since 2013 and happily subscribed to Virtuozzo (licensed version) this year. The dream of our company always was use Virtuozzo Storage, and this year this dream comes true.
About Ubuntu 18.04 default ssh configuration:
I installed Ubuntu 18.04 template through "yum install ubuntu-18.04-x86_64-ez.noarch" and everything is running fine, with exception to the SSH server.
To be able to login into my container using ssh, first I have to change the default ssh configuration in "/etc/ssh/sshd_config", changing the directive "PermitRootLogin" to "yes", instead of the default "prohibit-password".
An alternative solution is to create the container with the public ssh key of container's owner, but I can't find this option in Virtuozzo Automator. Is there an option in Virtuozzo CLI to create a container with a pre-installed public ssh key?
Naturally changing the specific line on the original template solves the problem, but it really seems more secure to stay with this "default" and to use ssh authentication through keys.

Thanks!

Paulo Coghi

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openvz.org/pipermail/users/attachments/20180704/bc1a24a4/attachment-0001.html>


More information about the Users mailing list