Hi All, Is it possible to prevent users from choosing empty passphrase? Or to force a passphrase on users? Or for SSH to force users to go through a 2-step authentication process? (e.g. users must enter a passphrase and a password) This is something similar to dialup servers where the user must enter a port password and the username/password combination in order to get in. Basically I want to prevent a user from divulging his normal password (e.g. user divulges his real password when using anonymous ftp) and then an intruder from coming in the ssh server using that password. We have something in place to prevent bad/guessable passwords, but we want to protect ourselves from a password being involutarily divulged. I know I can set set PasswordAuthentication to "no", to prevent this password authentication, but if I choose RSAAuthentication, a user can choose an empty passphrase or a bad/guessable one. Thanks Norman.
