SSH root login with keys only
Erik Norgaard
norgaard at locolomo.org
Mon Apr 5 06:52:40 UTC 2010
On 05/04/10 01:35, Marcin Wisnicki wrote:
> PasswordAuthentication is already disabled (by default).
> I need to disable ChallengeResponseAuthentication however:
>
> /etc/ssh/sshd_config line 131: Directive 'ChallengeResponseAuthentication'
> is not allowed within a Match block
>
> Same thing for "UsePAM no" (though I would like to keep pam for accounting
> and session management)
You can configure two daemons one with root access allowed and the other
without. Let the one with root access allowed run on a non-standard port.
BR, Erik
--
Erik Nørgaard
Ph: +34.666334818/+34.915211157 http://www.locolomo.org
More information about the freebsd-questions
mailing list