On Tue, Jan 5, 2010 at 11:32 AM, Eugene Yunak <e.yu...@gmail.com> wrote:
> You can use per user rules in sshd_config, just read the man page. I've read the man page a number of times, and didn't see that. The closest thing was is "AllowUsers", but this is for enabling and disabling logins per user, not limiting a user to SSH Key logins only. But after reading ssh_config manpage, and I note that one can set "PasswordAuthentication no" in a per-user configuration file ~/.ssh/config The problem with this is the manpage states "this file must have strict permissions: read/write for the user, and not accessible by others". This means the user can edit this after logging in, and remove or change the PasswordAuthentication variable. -- Ted
