Comment 5 for bug 1873528
Revision history for this message
| Seth Arnold (seth-arnold) wrote Re: [Bug 1873528] Re: sshd overrides from /etc/ssh/sshd_config.d/*conf apply in reverse lexographic order | #5 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
(Get the code!)
On Fri, Apr 24, 2020 at 01:16:31PM -0000, Dimitri John Ledkov wrote:
> Include /run/ssh/
> Include /etc/ssh/
> Include /lib/ssh/
> It would be nice if /etc/ssh only had the host keys, and no other
> default options.
This feels like it'd also need systemd-style config options to allow
admins to say they don't want specific packaged configs, too.
This mechanism could be ideal for eg ec2-instance-
current implementation, via:
/lib/systemd/
can be ignored via a symlink to /dev/null in
/etc/systemd/
Changing to sshd config snippets in /lib/ssh/
require uninstalling the package entirely, which might also require
uninstalling meta-packages.
A simple 'include' mechanism without allowances for nulling out unwanted
configs is useful but probably not alone sufficient.
Thanks