On Thu, Oct 21, 2010 at 05:38:54PM +0000, Jay K wrote:
> My ideal setup would be:
> 1) no passwords ("*" in /etc/passwd or via vipw)
> 2) only ssh for remote access
> i.e. no password-based security, only something better
> 3) except console, where anyone should be able to login
> without any password (granted, I only have two users, root and jay)
You can get almost the same thing by setting "PasswordAuthentication" to "no"
in your sshd_config file, and hand out empty or ridiculously simple passwords
for the console (honestly, who would forget "yermomsawhore" as a password?).
>
>
> I haven't been able to achieve #3, so I compromise
> and have no console access at all, except maybe via single user.
> I really don't want security to be password-based.
> Hints?
>
>
> (This is on Linux, Solaris, NetBSD, Darwin, OpenBSD, FreeBSD;
> I've achieved #1 and #2 on all; presumably hints here only for OpenBSD.)
>
>
> Thanks,
> - Jay
