Re: can't turn off ssh password access on my new solaris box
- From: Darren Tucker <dtucker@xxxxxxxxxxxxxxxx>
- Date: 23 Apr 2006 21:44:14 GMT
On 2006-04-22, Richard E. Silverman <res@xxxxxxxx> wrote:
[...]i've spent about 4 hours now googling around, trying to figure out why
solaris 8 install of ssh and my solaris 10 install behave differently.
the problem i'm having is that i cannot turn off password access to my
solaris 10 machine.
[...][host1:~] steve% ssh host2
Enter passphrase for key '/Users/steve/.ssh/id_rsa': <CR>
Password:
Possibly it is not using the SSH "password" authentication method, but
rather "keyboard-interactive", whose behavior is usually configured via
PAM, and by defalt usually just prompts for a password.
That is certainly what it looks like.
Try this in sshd_config:
KbdInteractiveAuthentication no
That will turn off keyboard-interactive in Protocol 2 but you probably
want to also set "ChallengeResponseAuthentication no" turn off the
equivalent authentication (PAM via TIS challenge-response) for Protocol 1.
--
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4 37C9 C982 80C7 8FF4 FA69
Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.
.
- Follow-Ups:
- Re: can't turn off ssh password access on my new solaris box
- From: Richard E. Silverman
- Re: can't turn off ssh password access on my new solaris box
- References:
- can't turn off ssh password access on my new solaris box
- From: stroller
- Re: can't turn off ssh password access on my new solaris box
- From: Richard E. Silverman
- can't turn off ssh password access on my new solaris box
- Prev by Date: Re: Is there a way to speed up and resume a SSH X forwarding session from a disconnection?
- Next by Date: Re: can't turn off ssh password access on my new solaris box
- Previous by thread: Re: can't turn off ssh password access on my new solaris box
- Next by thread: Re: can't turn off ssh password access on my new solaris box
- Index(es):
Relevant Pages
|
|
