Restore reading authorized_keys2 by default

Upstream seems to intend to gradually phase this out, so don't assume that this will remain the default forever. However, we were late in adopting the upstream sshd_config changes, so it makes sense to extend the grace period. Bug-Debian: https://bugs.debian.org/852320 Forwarded: not-needed Last-Update: 2017-03-05 Patch-Name: restore-authorized_keys2.patch
author: Colin Watson <cjwatson@debian.org> 2017-03-05 02:02:11 +0000
committer: Colin Watson <cjwatson@debian.org> 2019-06-05 13:11:53 +0100
commit: 1af6147744892b18e2239c085abe87f5408cbaae (patch)
tree: 049fa09a7cadce885ddf552cad9c074876a8f043
parent: ebd590550bb09fe129b103994d53143788683d05 (diff)
1 files changed, 2 insertions, 3 deletions
diff --git a/sshd_config b/sshd_config
index ed8272f6d..ee9629102 100644
--- a/sshd_config
+++ b/sshd_config
@@ -36,9 +36,8 @@
 
 #PubkeyAuthentication yes
 
-# The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2
-# but this is overridden so installations will only check .ssh/authorized_keys
-AuthorizedKeysFile	.ssh/authorized_keys
+# Expect .ssh/authorized_keys2 to be disregarded by default in future.
+#AuthorizedKeysFile	.ssh/authorized_keys .ssh/authorized_keys2
 
 #AuthorizedPrincipalsFile none
author	Colin Watson <cjwatson@debian.org>	2017-03-05 02:02:11 +0000
committer	Colin Watson <cjwatson@debian.org>	2019-06-05 13:11:53 +0100
commit	1af6147744892b18e2239c085abe87f5408cbaae (patch)
tree	049fa09a7cadce885ddf552cad9c074876a8f043
parent	ebd590550bb09fe129b103994d53143788683d05 (diff)