diff options
| author | Saul Wold <sgw@linux.intel.com> | 2012-09-07 15:18:36 -0700 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2012-09-10 13:01:52 +0100 |
| commit | 24288740d0bf0c4e381ee942857a88c23647eafc (patch) | |
| tree | 830eed20c1305c4e6e5ad18253be6e4b604bf595 | |
| parent | 9b92449de1e5a43ad01d36c1938863210edce01b (diff) | |
| download | poky-24288740d0bf0c4e381ee942857a88c23647eafc.tar.gz | |
core-image: allow root login when debug-tweaks is enabled
This allows root to login over ssh with an empty password just like
dropbear when the debug-tweaks are enabled, it's important to disable
debug-tweaks for a production system as this will leave open a security
hole!
Thanks to Marc for the settings.
Cc: Marc Ferland <marc.ferland@gmail.com>
[Yocto #3078]
(From OE-Core rev: 13e6aa8bba6ab1ebba1efa23f94af379a8fcb6a9)
Signed-off-by: Saul Wold <sgw@linux.intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
| -rw-r--r-- | meta/classes/image.bbclass | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/classes/image.bbclass b/meta/classes/image.bbclass index 2e95556011..9af67e7384 100644 --- a/meta/classes/image.bbclass +++ b/meta/classes/image.bbclass | |||
| @@ -369,6 +369,7 @@ zap_root_password () { | |||
| 369 | # allow openssh accept login with empty password string | 369 | # allow openssh accept login with empty password string |
| 370 | openssh_allow_empty_password () { | 370 | openssh_allow_empty_password () { |
| 371 | if [ -e ${IMAGE_ROOTFS}${sysconfdir}/ssh/sshd_config ]; then | 371 | if [ -e ${IMAGE_ROOTFS}${sysconfdir}/ssh/sshd_config ]; then |
| 372 | sed -i 's#.*PermitRootLogin.*#PermitRootLogin yes#' ${IMAGE_ROOTFS}${sysconfdir}/ssh/sshd_config | ||
| 372 | sed -i 's#.*PermitEmptyPasswords.*#PermitEmptyPasswords yes#' ${IMAGE_ROOTFS}${sysconfdir}/ssh/sshd_config | 373 | sed -i 's#.*PermitEmptyPasswords.*#PermitEmptyPasswords yes#' ${IMAGE_ROOTFS}${sysconfdir}/ssh/sshd_config |
| 373 | fi | 374 | fi |
| 374 | } | 375 | } |