This package adds /etc/ssh/sshd_config.d/9999999gentoo-pam.conf plus appends Include "/etc/ssh/sshd_config.d/*.conf" at the end of /etc/ssh/sshd_config. All of this makes it really inconvenient and unclear how to override settings in these files. Moreover, conf filename starting with 7 (!) nines looks like this is a musthave/required/critical setup absolutely not recommended to override - which isn't the case. Can you please change this to make it more optionated and easier to override?
Have you read your news items?
(In reply to Sam James from comment #1) > Have you read your news items? Yep. Do you want to say recommended way is to edit 9999999gentoo-pam.conf instead of overriding it using 9999999999local.conf (as it usually done in *.d/ configuration style)?
(In reply to Alex Efros from comment #2) > (In reply to Sam James from comment #1) > > Have you read your news items? > > Yep. > > Do you want to say recommended way is to edit 9999999gentoo-pam.conf instead > of overriding it using 9999999999local.conf (as it usually done in *.d/ > configuration style)? The news item says you override it in a *lower* numbered file.
(In reply to Sam James from comment #3) > The news item says you override it in a *lower* numbered file. Yeah, I saw this. I just don't actually believe it works this way - it's counter intuitive and everything else works in other way. :(
Okay, I see. sshd_config(5) says "… processed in lexical order.", but it also says "… for each keyword, the first obtained value will be used.".
