openssh: sync local ssh_config + sshd_config files with upstream 8.7p1

Changes are caused by the removal of deprecated options. ChallengeResponseAuthentication was replaced by KbdInteractiveAuthentication in the SSHv2 protocol, see https://www.openssh.com/txt/release-8.7 (From OE-Core rev: 3a66dd6e05a65446a43cba2bf6972e78b2b13c31) Signed-off-by: Jan Luebbe <jlu@pengutronix.de> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Jan Luebbe <jlu@pengutronix.de> 2022-08-18 13:17:02 +0200
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2022-08-21 22:51:41 +0100
commit: 426e265b4094d2a5dd5e2b42888e84aeb2d41087 (patch)
tree: 4873d9cd115eabeb62b47585be4941d0c6fc1b40 /meta/recipes-connectivity/openssh/openssh/sshd_config
parent: 7ab2366d1608a5311e26295613759b04254090aa (diff)
download: poky-426e265b4094d2a5dd5e2b42888e84aeb2d41087.tar.gz
1 files changed, 7 insertions, 8 deletions
diff --git a/meta/recipes-connectivity/openssh/openssh/sshd_config b/meta/recipes-connectivity/openssh/openssh/sshd_config
index 15f061b570..9c53805890 100644
--- a/meta/recipes-connectivity/openssh/openssh/sshd_config
+++ b/meta/recipes-connectivity/openssh/openssh/sshd_config
@@ -1,4 +1,4 @@
-#       $OpenBSD: sshd_config,v 1.102 2018/02/16 02:32:40 djm Exp $
+#       $OpenBSD: sshd_config,v 1.104 2021/07/02 05:11:21 dtucker Exp $
 # This is the sshd server system-wide configuration file.  See
 # sshd_config(5) for more information.
@@ -57,9 +57,9 @@ AuthorizedKeysFile	.ssh/authorized_keys
 #PasswordAuthentication yes
 #PermitEmptyPasswords no
-# Change to yes to enable challenge-response passwords (beware issues with
+# Change to yes to enable keyboard-interactive authentication (beware issues
-# some PAM modules and threads)
+# with some PAM modules and threads)
-ChallengeResponseAuthentication no
+KbdInteractiveAuthentication no
 # Kerberos options
 #KerberosAuthentication no
@@ -73,13 +73,13 @@ ChallengeResponseAuthentication no
 # Set this to 'yes' to enable PAM authentication, account processing,
 # and session processing. If this is enabled, PAM authentication will
-# be allowed through the ChallengeResponseAuthentication and
+# be allowed through the KbdInteractiveAuthentication and
 # PasswordAuthentication.  Depending on your PAM configuration,
-# PAM authentication via ChallengeResponseAuthentication may bypass
+# PAM authentication via KbdInteractiveAuthentication may bypass
 # the setting of "PermitRootLogin without-password".
 # If you just want the PAM account and session checks to run without
 # PAM authentication, then enable this but set PasswordAuthentication
-# and ChallengeResponseAuthentication to 'no'.
+# and KbdInteractiveAuthentication to 'no'.
 #UsePAM no
 #AllowAgentForwarding yes
@@ -92,7 +92,6 @@ ChallengeResponseAuthentication no
 #PrintMotd yes
 #PrintLastLog yes
 #TCPKeepAlive yes
-#UseLogin no
 #PermitUserEnvironment no
 Compression no
 ClientAliveInterval 15
author	Jan Luebbe <jlu@pengutronix.de>	2022-08-18 13:17:02 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2022-08-21 22:51:41 +0100
commit	426e265b4094d2a5dd5e2b42888e84aeb2d41087 (patch)
tree	4873d9cd115eabeb62b47585be4941d0c6fc1b40 /meta/recipes-connectivity/openssh/openssh/sshd_config
parent	7ab2366d1608a5311e26295613759b04254090aa (diff)
download	poky-426e265b4094d2a5dd5e2b42888e84aeb2d41087.tar.gz