[vox-tech] sshd_config and PasswordAuthentication
David Hummel
dhml at comcast.net
Fri Jul 22 13:20:55 PDT 2005
On Fri, Jul 22, 2005 at 12:02:41PM -0700, Karsten M. Self wrote:
>
> on Fri, Jul 22, 2005 at 10:01:32AM -0500, Jay Strauss (me at heyjay.com) wrote:
> >
> > I thought you were telling me that when this is set to "no" then I
> > still type my password, then some magic happens, and I login to the
> > remote box but I never send my password down the line.
>
> No. If "PasswordAuthentication no" is set in /etc/ssh/sshd_config, on
> the remote host, then you *must* use another method, and my
> understanding is that this limits you to SSH-passkey. Your remote
> password (tunneled and encrypted or not) *won't* work.
If you want to fully disable password auth, it is still necessary to set
ChallengeResponseAuthentication to no.
-David
More information about the vox-tech
mailing list