diff options
author | Chris Buechler <cmb@pfsense.org> | 2015-07-23 23:07:47 -0500 |
---|---|---|
committer | Chris Buechler <cmb@pfsense.org> | 2015-07-23 23:07:47 -0500 |
commit | 29f5f85e4e342ccd24c43b58c7cee7cafa640de0 (patch) | |
tree | 5202a6facf411966dc00c3afb9c59464dd2d7b66 | |
parent | 8e3c8f535a3a96358364b03fbafff0d59a8f9fde (diff) | |
download | pfsense-29f5f85e4e342ccd24c43b58c7cee7cafa640de0.zip pfsense-29f5f85e4e342ccd24c43b58c7cee7cafa640de0.tar.gz |
Lower LoginGraceTime to 30s, should be plenty long for users, and mitigates the password login attempt bypass bug in OpenSSH. Ticket #4875
-rwxr-xr-x | etc/sshd | 1 |
1 files changed, 1 insertions, 0 deletions
@@ -124,6 +124,7 @@ $sshconf .= "Port $sshport\n"; /* Hide FreeBSD version */ $sshconf .= "VersionAddendum none\n"; + $sshconf .= "LoginGraceTime 30s\n"; /* Apply package SSHDCond settings if config file exists */ if (file_exists("/etc/sshd_extra")) { |