Re: Working sshd_config to restrict root logins to designated hosts

On Dec 4, 5:07 am, mlel...@xxxxxxxxxx (Michael van Elst) wrote:
Nico Kadel-Garcia <nka...@xxxxxxxxx> writes:
* SSH key access is blocked for root.

How can you select (or deny) authentication methods for a specific user?

You could run two ssh daemons on different ports (or IP addresses), one
that forbids SSH keys but only allows root access. And one that
allows SSH keys but forbids root access.

This is a workable technique. It does maintaining two sets of init
scripts and sshd_config files, which is more awkard to deploy.