Configuration Changes

1.0.5

• No root login with password over ssh 2025-04-21T20:34:43

  Do not allow root to login via ssh using a password. While we already have
  measures in place to make it difficult to setup password based login via
  ssh, this adds another layer addressing the root user. Cloud instances
  should only used key based login.

• Disable password based login for ssh 2025-04-18T11:40:04

  Depending on the protocol version for SSH we need to set either
  ChallengeResponseAuthentication or KbdInteractiveAuthentication to
  "no". Prior to this change we only set ChallengeResponseAuthentication
  allowing password based login when the SSHv2 protocol is used. We now
  modify newer config files appropriately.

• Drop instance-billing-flavor check from CHOST and Azure LI/VLI 2025-03-12T12:56:10

Added Packages

• openssh-server-config-disallow-rootlogin