X-Git-Url: http://gitweb.hugovil.com/?a=blobdiff_plain;f=stage3%2Fcis-openssh;h=2e36ee071e2fe9c9940516c0bc40b0a992f5b1b0;hb=0028eaa73ae0c3bd1dbf90c4bd508ae705bc386f;hp=078ea388b4ba11e8f98c3b84a0ffa685e7c60fe2;hpb=be41960e19c9daee738916df4138559a262ca34a;p=hvlinux.git

diff --git a/stage3/cis-openssh b/stage3/cis-openssh
index 078ea38..2e36ee0 100755
--- a/stage3/cis-openssh
+++ b/stage3/cis-openssh
@@ -14,7 +14,7 @@ apply_patches ${1}
 install -v -m700 -d /var/lib/sshd
 chown -v root:sys /var/lib/sshd
 
-hv_groupadd sshd
+groupadd -f sshd
 hv_useradd -c sshd-privsep -d /var/lib/sshd -g sshd -s /bin/false sshd
 
 cd ${LFS_TMP}/${1}-build
@@ -40,8 +40,8 @@ sed -i -e "s!^#PermitRootLogin.*!PermitRootLogin no!g" /etc/ssh/sshd_config
 # Enabling X11 forwarding
 sed -i -e "s!^#X11Forwarding.*!X11Forwarding yes!g" /etc/ssh/sshd_config
 
-# Setting MaxAuthTries to 1
-sed -i -e "s!^#MaxAuthTries.*!MaxAuthTries 1!g" /etc/ssh/sshd_config
+# Setting MaxAuthTries to 2
+sed -i -e "s!^[#]*MaxAuthTries.*!MaxAuthTries 3!g" /etc/ssh/sshd_config
 
 install -v -m740 ${SCRDIR}/bootscripts/sshd /etc/rc.d/init.d
 bootscript_add_rc3 sshd 25 70