You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@karaf.apache.org by "Lars Kiesow (JIRA)" <ji...@apache.org> on 2016/10/28 14:43:58 UTC

[jira] [Created] (KARAF-4809) SSH should not listen to all hosts

Lars Kiesow created KARAF-4809:
----------------------------------

             Summary: SSH should not listen to all hosts
                 Key: KARAF-4809
                 URL: https://issues.apache.org/jira/browse/KARAF-4809
             Project: Karaf
          Issue Type: Bug
    Affects Versions: 4.0.7
            Reporter: Lars Kiesow
             Fix For: 4.0.8


The default SSH server configuration will make Karaf listen to all hosts. It is usually good practice to instead listen to localhost only by default to avoid possible security risks (e.g. accidentally exposing an unconfigured SSH server).

This can be fixed by adjusting `sshHost` in `org.apache.karaf.shell.cfg`



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)