!/bin/bash
SSH_ROOT_NO=`awk ‘/PermitRootLogin/’ /etc/ssh/sshd_config|awk
‘{if( 1=="′PermitRootLogin′")print 1 == " ′ P e r m i t R o o t L o g i n ′ " ) p r i n t 1,$2}’`
SSH_ROOT_YES=`awk ‘/PermitRootLogin/’ /etc/ssh/sshd_config|awk
‘{if(1=="#PermitRootLogin") print 1=="#PermitRootLogin") print 1,$2}’`
if
[ “$SSH_ROOT_YES” == “#PermitRootLogin yes” ]
then
sed -i “s/#PermitRootLogin yes/PermitRootLogin no/g” /etc/ssh/sshd_config &&
echo “set deny root to ssh ……” &&
service sshd restart
elif
[ “$SSH_ROOT_NO” == “PermitRootLogin no” ]
then
echo “ssh for root is already deny,nothing to do……”
fi