Hello,
I did some tests with ssh, and i could see that when the ssh client tries
to log in to the sshd server, first tries to authenticate using the public
key, and if it fails, then it may ask for the password for that user on the
server machine ( i mean, the password for that account on the unix server wich
is running the sshd). I'm using the following /etc/sshd2/sshd2_config file:
# sshd2_config
# SSH 2.0 Server Configuration File
*:
Port 22
ListenAddress 0.0.0.0
# Ciphers AnyStd
# Ciphers AnyCipher
# Ciphers AnyStdCipher
Ciphers 3des
IdentityFile identification
AuthorizationFile authorization
HostKeyFile hostkey
PublicHostKeyFile hostkey.pub
RandomSeedFile random_seed
ForwardAgent yes
ForwardX11 yes
PasswordAuthentication yes
PasswordGuesses 3
PermitRootLogin yes
PubkeyAuthentication yes
ForcePTTYAllocation no
VerboseMode no
PrintMotd yes
UserConfigDirectory "%D/.ssh2"
# UserConfigDirectory "/etc/ssh2/auth/%U"
# subsystem definitions
subsystem-sftp sftp-server
The problem i have is that when i set the PasswordAuthentication to 'yes' and
the PubkeyAuthentication to 'yes', i want BOTH methods to be succesfull to
grant the access for the user. I don't want the user gain access to the system
with only one of those 2 methods succesfully passed.
I think this is working know like
'PasswordAuthentication OR PubkeyAuthentication'
and what I want is
'PasswordAuthentication AND PubkeyAuthentication' ( otherwise, deny access)
Is there any way to do what I want to do?
Thanx in advance
Garompa
p.d.: btw, i have just subscribed to the mailing list, but i still didn't
receive any emails from the mailing list, so if anyone can help me, please CC
your answer to [EMAIL PROTECTED]
____________________________________________________________________
Get free e-mail and a permanent address at http://www.netaddress.com/?N=1
