Re: [vox-tech] sshd_config and PasswordAuthentication

To: vox-tech@lists.lugod.oMAPSrg
Subject: Re: [vox-tech] sshd_config and PasswordAuthentication
From: David Hummel <dhmlMAPS@comcast.net>
Date: Thu, 7 Jul 2005 12:07:51 -0400
Delivered-to: lugod@livepenguin.com
Delivered-to: vox-tech@livepenguin.com
In-reply-to: <42CD5101.40002@heyjay.com>
List-archive: <http://ns1.livepenguin.com/pipermail/vox-tech>
List-help: <mailto:vox-tech-request@lists.lugod.org?subject=help>
List-id: lugod's technical discussion forum <vox-tech.lists.lugod.org>
List-post: <mailto:vox-tech@lists.lugod.org>
List-subscribe: <http://lists.lugod.org/mailman/listinfo/vox-tech>,<mailto:vox-tech-request@lists.lugod.org?subject=subscribe>
List-unsubscribe: <http://lists.lugod.org/mailman/listinfo/vox-tech>,<mailto:vox-tech-request@lists.lugod.org?subject=unsubscribe>
References: <42CD34CA.1090208@heyjay.com> <20050707144351.GA6639@houseag.com><42CD5101.40002@heyjay.com>
Reply-to: lugod's technical discussion forum <vox-tech@lists.lugod.oMAPSrg>
Sender: vox-tech-bouMAPSnces@lists.lugod.org
User-agent: Mutt/1.5.6+20040907i

On Thu, Jul 07, 2005 at 10:57:53AM -0500, Jay Strauss wrote:
>
> Henry House wrote:
> >
> >With PasswordAuthentication set to no, SSH-key authentication must be
> >used instead of a password. This method uses public/private key pairs
> >created by ssh-keygen(1) to authenticate. This is generally
> >considered more secure than tunneled-password authencation for
> >reasons than someone else can explaim better than I can.
> 
> This is what I thought that option did, but I have
> PasswordAuthentication no on most of my boxes but don't use a key pair
> to log in.  I get prompted for a password and I type that in, and I'm
> logged on.

That's correct.  Setting PasswordAuthentication to no does not disable
password auth.  You can still fall back on it if you aren't using public
key auth.  If you really want to disable password auth, you need to set
ChallengeResponseAuthentication to no.

-David
_______________________________________________
vox-tech mailing list
vox-tech@lists.lugod.org
http://lists.lugod.org/mailman/listinfo/vox-tech

References:
- [vox-tech] sshd_config and PasswordAuthentication
  - From: Jay Strauss
- Re: [vox-tech] sshd_config and PasswordAuthentication
  - From: Henry House
- Re: [vox-tech] sshd_config and PasswordAuthentication
  - From: Jay Strauss

Prev by Date: Re: [vox-tech] sshd_config and PasswordAuthentication
Next by Date: Re: [vox-tech] sshd_config and PasswordAuthentication
Previous by thread: Re: [vox-tech] sshd_config and PasswordAuthentication
Next by thread: Re: [vox-tech] sshd_config and PasswordAuthentication
Index(es):
- Date
- Thread

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
1105 Kennedy Place, Suite 1, Davis, CA 95616
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.