On Sat, Aug 04, 2001 at 12:30:20AM +0200, Tobias wrote: > Hello! > > you can disable password login in sshd and only run ssh with public > key authentication, just don't forget to put a root owned non-writable > folder or file called ".ssh" and ".ssh2" in the accounts you do not wish > people to log in to. > > And I agree with Jim Breton about locking down PAM as much as possible. >
Umm... Once you deny password login and only key based auth, how are they going to create the file in the first place?