Re: Disable password authentication

From: Darren Dunham (ddunham_at_redwood.taos.com)
Date: 02/23/05


Date: Wed, 23 Feb 2005 00:06:07 GMT

Gyruss <gyruss@hushmail.com> wrote:
> Dear all,

> Does openssh permit you to disable password authentication on a user-by-user
> basis or does it only support the system-wide setting in sshd_config,
> PasswordAuthentication (yes / no).

That would be "server-wide". You could run two servers (on different
ports) with different settings. The servers could explicitly allow or
deny particular users, such that a user would only have access to the
system via ssh and a non-password method.

Of course, most folks will only expect the server on port 22, and it's
difficult to send any useful message like: this isn't your server, go
try the one on port 2222.

-- 
Darren Dunham                                           ddunham@taos.com
Senior Technical Consultant         TAOS            http://www.taos.com/
Got some Dr Pepper?                           San Francisco, CA bay area
         < This line left intentionally blank to confuse you. >