[gentoo-user] sshd publickey only

[Peet Grobler]

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Me again.
I need to configure the ssh daemon to only accept public-key auth, not
password-auth. As far as I am aware, disabling password-auth in
/etc/ssh/sshd_config should accomplish this. I did this:
# To disable tunneled clear text passwords, change to no here!
PasswordAuthentication no
PermitEmptyPasswords no
RSAAuthentication yes
PubkeyAuthentication yes
But - I can stil login without pubkey and with password. I did re-start
the ssh daemon. This method worked fine on my debian boxen, what am I
missing in gentoo?
If you need more info - just ask.
Regards,
- --
Peet Grobler
Public PGP key available from wwwkeys.pgp.net
http://peet.hivemind.net/PGPKeys.txt
-BEGIN PGP SIGNATURE-
Version: GnuPG v1.4.1 (MingW32)
iD8DBQFCcTzzz77+L65p5ZIRAgyLAKChIOF5HodofPfrb61pSwdG5qFJCwCfcphl
ZwqeCnsXKQ7U4U+aeXgxSHg=
=hBN1
-END PGP SIGNATURE-
--
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] sshd publickey only

[Graham Murray]

Peet Grobler <[EMAIL PROTECTED]> writes:

> # To disable tunneled clear text passwords, change to no here!
> PasswordAuthentication no
> PermitEmptyPasswords no
> RSAAuthentication yes
> PubkeyAuthentication yes
>
> But - I can stil login without pubkey and with password. I did re-start
> the ssh daemon. This method worked fine on my debian boxen, what am I
> missing in gentoo?

Have you also got
UsePAM yes

If so then set this to 'no'
-- 
gentoo-user@gentoo.org mailing list