sshd - public key vs keyboard interactive authentication
Danie Du Toit
danie.dutoit at gmail.com
Sun Mar 6 18:18:24 PST 2005
Thanks for the responses - all set!
On Mon, 07 Mar 2005 01:58:30 +0000, Chris Hodgins
<chodgins at cis.strath.ac.uk> wrote:
> Jeff With wrote:
> >>So, my questions:
> >>
> >>1. How do I disable password authentication - i.e. force to use the DSA keys?
> >
> >
> > Make sure all 'password' auth is disabled and publickey is enabled.
> >
> > <sshd_config>
> >
> > PasswordAuthentication no
> > UseLogin no
> > UsePAM no
> > PubkeyAuthentication yes
> >
> >
> >>2. Can I use both for added security - i.e. using the keys and then
> >>get prompted for password?
> >
> >
> > There was some work stared on this type of thing last year, but I
> > don't think it was every finalized...
> >
> > http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=108552250117169&w=2
> >
> > - jw
>
> You can add a passphrase to your key using ssh-keygen. If you use a
> password you get something like this when you login.
>
> chris at laptop:/usr/home/chris$ ssh myserver.net
> Enter passphrase for key '/home/chris/.ssh/id_dsa':
>
> Chris
>
More information about the freebsd-questions
mailing list