Bug 797

Summary: ignores setting of CONSOLE var in /etc/default/login
Product: Portable OpenSSH Reporter: Scott Packard <scott.packard>
Component: sshdAssignee: OpenSSH Bugzilla mailing list <openssh-bugs>
Status: CLOSED WONTFIX    
Severity: normal    
Priority: P2    
Version: 3.7.1p2   
Hardware: UltraSPARC   
OS: Solaris   

Description Scott Packard 2004-01-26 18:16:14 AEDT 
- Won't honor configuration of /etc/default/login variable.
 As shipped, Solaris (most versions) have a variable set in this file
 CONSOLE=/dev/console
 If the var is set, root login only is allowed on the console.
 If you comment the var out, then root is allowed from anywhere.
 sshd doesn't care whether or not the var is set.
Comment 1 Ben Lindstrom 2004-01-26 18:50:25 AEDT 
this has been discussed before on the openssh-unix-dev@ archives.  to honor this would effectly
destory:

     PermitRootLogin
             Specifies whether root can login using ssh(1). The argument must
             be ``yes'', ``without-password'', ``forced-commands-only'' or
             ``no''. The default is ``yes''.

And after long discussion that 'PermitRootLogin' is more useful.  It was decided that CONSOLE
should be ignored.
Comment 2 Scott Packard 2004-01-27 09:42:18 AEDT 
this has been discussed before on the openssh-unix-dev@ archives.  to honor this
would effectly
destory:

     PermitRootLogin
             Specifies whether root can login using ssh(1). The argument must
             be ``yes'', ``without-password'', ``forced-commands-only'' or
             ``no''. The default is ``yes''.

And after long discussion that 'PermitRootLogin' is more useful.  It was decided
that CONSOLE
should be ignored.
Comment 3 Damien Miller 2004-04-14 12:24:20 AEST 
Mass change of RESOLVED bugs to CLOSED