Antonio Larrosa
fef1b16e66
commented out). The keycat binary isn't really installed nor supported, so we can drop it, except for the code that is used by other SELinux patches, which is what I kept from that patch (boo#1229072). - Add patch submitted to upstream to fix RFC4256 implementation so that keyboard-interactive authentication method can send instructions and sshd shows them to users even before a prompt is requested. This fixes MFA push notifications (boo#1229010). * 0001-auth-pam-Immediately-report-instructions-to-clients-and-fix-handling-in-ssh-client.patch OBS-URL: https://build.opensuse.org/package/show/network/openssh?expand=0&rev=274
41 lines
1.5 KiB
Diff
41 lines
1.5 KiB
Diff
Index: openssh-8.9p1/ssh_config
|
|
===================================================================
|
|
--- openssh-8.9p1.orig/ssh_config
|
|
+++ openssh-8.9p1/ssh_config
|
|
@@ -17,6 +17,13 @@
|
|
# list of available options, their meanings and defaults, please see the
|
|
# ssh_config(5) man page.
|
|
|
|
+# To modify the system-wide ssh configuration, create a "*.conf" file under
|
|
+# "/etc/ssh/ssh_config.d/" which will be automatically included below.
|
|
+# Don't edit this configuration file itself if possible to avoid update
|
|
+# problems.
|
|
+Include /etc/ssh/ssh_config.d/*.conf
|
|
+Include /usr/etc/ssh/ssh_config.d/*.conf
|
|
+
|
|
Host *
|
|
# ForwardAgent no
|
|
# ForwardX11 no
|
|
Index: openssh-8.9p1/sshd_config
|
|
===================================================================
|
|
--- openssh-8.9p1.orig/sshd_config
|
|
+++ openssh-8.9p1/sshd_config
|
|
@@ -5,10 +5,17 @@
|
|
|
|
# This sshd was compiled with PATH=/usr/bin:/bin:/usr/sbin:/sbin
|
|
|
|
+# To modify the system-wide sshd configuration, create a "*.conf" file under
|
|
+# "/etc/ssh/sshd_config.d/" which will be automatically included below.
|
|
+# Don't edit this configuration file itself if possible to avoid update
|
|
+# problems.
|
|
+Include /etc/ssh/sshd_config.d/*.conf
|
|
+
|
|
# The strategy used for options in the default sshd_config shipped with
|
|
# OpenSSH is to specify options with their default value where
|
|
# possible, but leave them commented. Uncommented options override the
|
|
# default value.
|
|
+Include /usr/etc/ssh/sshd_config.d/*.conf
|
|
|
|
#Port 22
|
|
#AddressFamily any
|