Restore reading authorized_keys2 by default

Upstream seems to intend to gradually phase this out, so don't assume that this will remain the default forever. However, we were late in adopting the upstream sshd_config changes, so it makes sense to extend the grace period. Bug-Debian: https://bugs.debian.org/852320 Forwarded: not-needed Last-Update: 2017-03-05 Patch-Name: restore-authorized_keys2.patch
author: Colin Watson <cjwatson@debian.org> 2017-03-05 02:02:11 +0000
committer: Colin Watson <cjwatson@debian.org> 2019-10-09 23:07:49 +0100
commit: f0c916d8008c30809fef44469bee1b74426a3071 (patch)
tree: e8b8d0b412504a65f36764c31557ade133f6c24d
parent: 7abde40896668ce9debfe056c7dabc6a70ef7da4 (diff)
1 files changed, 2 insertions, 3 deletions
diff --git a/sshd_config b/sshd_config
index ed8272f6d..ee9629102 100644
--- a/sshd_config
+++ b/sshd_config
@@ -36,9 +36,8 @@
 
 #PubkeyAuthentication yes
 
-# The default is to check both .ssh/authorized_keys and .ssh/authorized_keys2
-# but this is overridden so installations will only check .ssh/authorized_keys
-AuthorizedKeysFile	.ssh/authorized_keys
+# Expect .ssh/authorized_keys2 to be disregarded by default in future.
+#AuthorizedKeysFile	.ssh/authorized_keys .ssh/authorized_keys2
 
 #AuthorizedPrincipalsFile none
author	Colin Watson <cjwatson@debian.org>	2017-03-05 02:02:11 +0000
committer	Colin Watson <cjwatson@debian.org>	2019-10-09 23:07:49 +0100
commit	f0c916d8008c30809fef44469bee1b74426a3071 (patch)
tree	e8b8d0b412504a65f36764c31557ade133f6c24d
parent	7abde40896668ce9debfe056c7dabc6a70ef7da4 (diff)