From e000716443d2951cb9e6feee37562e79d6e46398 Mon Sep 17 00:00:00 2001 From: "Kevin P. Fleming" Date: Sun, 28 Apr 2019 21:12:06 -0400 Subject: [PATCH] Remove 'UsePrivilegeSeparation' from Fedora defaults This option has been deprecated in OpenSSH for nearly two years, was the default for five years before that, and is not part of the current Fedora default configuration. It should not be included in sshd_config on Fedora systems. --- vars/Fedora.yml | 1 - 1 file changed, 1 deletion(-) diff --git a/vars/Fedora.yml b/vars/Fedora.yml index f20aa9a..c625ae3 100644 --- a/vars/Fedora.yml +++ b/vars/Fedora.yml @@ -16,7 +16,6 @@ __sshd_defaults: GSSAPICleanupCredentials: no UsePAM: yes X11Forwarding: yes - UsePrivilegeSeparation: sandbox AcceptEnv: - LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES - LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT