How to disable welcome message after SSH login?

Question

I have changed /etc/issue.net, so I have set a "personal" message after typing a username in an SSH terminal. Now I am trying to change the welcome text after successful login.

I have found a lot of posts about the /etc/motd file, but the part "Welcome to Ubuntu blabla versionnumber and so on" + "* Documentation URL " is not there?

I just do not want to show OS info in my SSH terminal, I already know what I have installed. :) I only want to see my last login. And also not errors; errors belong in a logfile.

Which file do I have to edit?

score 100 · Accepted Answer · edited Sep 22 '15 at 21:44

The welcome messages are generated by the files residing in /etc/update-motd.d/.

From man update-motd:

Executable scripts in /etc/update-motd.d/* are executed by pam_motd(8) as the root user at each login, and this information is concatenated in /var/run/motd.

So if you don't want the outputs of those scripts upon login via ssh just remove the execute flag on them:

sudo chmod -x /etc/update-motd.d/*

Now if you want to show something you want upon login, you have two options:

Make a script, put it in /etc/update-motd.d/, make it executable, also make sure it outputs on STDOUT.

ssh has a Banner option. You can put the text in a file and set it in the Banner option so that the content of the file is shown upon login via ssh. Note that this is applicable to only ssh.

Banner /etc/foobar

From man 5 sshd_config:

 Banner  The contents of the specified file are sent to the remote user
         before authentication is allowed.  If the argument is “none” then
         no banner is displayed.  This option is only available for
         protocol version 2.  By default, no banner is displayed.

score 72 · Answer 2 · edited Sep 14 '22 at 01:08

72

Another way that does not require administrative rights is to place an empty file called

.hushlogin

into your $HOME directory (using for example touch ~/.hushlogin).

The downside to this solution is that you might miss a message saying something like

Last login: Wed Aug 22 16:00:10 2007 from l33t.hax0r.some.ips

that indicates your account has been compromised.

Source.

edited Sep 14 '22 at 01:08

Community

1

answered Sep 22 '19 at 07:41

Eph

821
6
4

score 8 · Answer 3 · edited Oct 22 '18 at 16:30

You can also nuke pam_motd altogether:

sed -i '/^[^#]*\<pam_motd.so\>/s/^/#/' /etc/pam.d/sshd

PAM calls pam_motd depending on the settings in /etc/pam.d, and typically the entries are:

$ grep pam_motd /etc/pam.d -R
/etc/pam.d/login:session    optional   pam_motd.so  motd=/run/motd.dynamic noupdate
/etc/pam.d/login:session    optional   pam_motd.so
/etc/pam.d/sshd:session    optional     pam_motd.so  motd=/run/motd.dynamic noupdate
/etc/pam.d/sshd:session    optional     pam_motd.so # [1]

Just commenting out the pam_motd lines from these files will disable it.

score 7 · Answer 4 · answered Dec 03 '20 at 12:02

7

There might also be file under /etc/motd containing a welcome message which can easily be removed (the content).

answered Dec 03 '20 at 12:02

bomben

2,167

How to disable welcome message after SSH login?

4 Answers4

Linked

Related