diff options
| author | Chris Buechler <cmb@pfsense.org> | 2015-07-23 23:07:47 -0500 |
|---|---|---|
| committer | Chris Buechler <cmb@pfsense.org> | 2015-07-23 23:07:47 -0500 |
| commit | 29f5f85e4e342ccd24c43b58c7cee7cafa640de0 (patch) | |
| tree | 5202a6facf411966dc00c3afb9c59464dd2d7b66 | |
| parent | 8e3c8f535a3a96358364b03fbafff0d59a8f9fde (diff) | |
| download | pfsense-29f5f85e4e342ccd24c43b58c7cee7cafa640de0.zip pfsense-29f5f85e4e342ccd24c43b58c7cee7cafa640de0.tar.gz | |
Lower LoginGraceTime to 30s, should be plenty long for users, and mitigates the password login attempt bypass bug in OpenSSH. Ticket #4875
| -rwxr-xr-x | etc/sshd | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -124,6 +124,7 @@ $sshconf .= "Port $sshport\n"; /* Hide FreeBSD version */ $sshconf .= "VersionAddendum none\n"; + $sshconf .= "LoginGraceTime 30s\n"; /* Apply package SSHDCond settings if config file exists */ if (file_exists("/etc/sshd_extra")) { |
