I have a user coming thru an ISP using DHCP so his IP address is random. So rather than set up AllowHosts to be a wide mask, I was hoping that RSAAuthentication can accomplish this. Can it? I ran ssh-keygen on a remote machine and copied the public key for that user to his homedir on the server as ~/.ssh/authorized_keys. Now when he logs in, he's prompted for the passphrase. But from another randomly chosen machine I can still login to the server as that user. Rather than prompting for the passphrase, I'm prompted for his password. The sshd_config on the server includes the following info: IgnoreRhosts no StrictModes no QuietMode no X11Forwarding yes FascistLogging no PrintMotd yes KeepAlive yes SyslogFacility DAEMON RhostsAuthentication yes RhostsRSAAuthentication yes RSAAuthentication yes PasswordAuthentication yes Ideas? Can this be done? TIA =-=-=-=-=-=-=-=-=- generated by /dev/dave -=-=-=-=-=-=-=-=-=-=-=-=-=-= David Stern TSI TelSys Manager, Information Systems 410-872-3906
