[Bug 263045] sshd allows password logins when "PasswordAuthentication no" is set

In reply to: bugzilla-noreply_a_freebsd.org: "[Bug 263045] sshd allows password logins when "PasswordAuthentication no" is set"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 05 Apr 2022 12:29:48 UTC

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=263045

--- Comment #3 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> ---
(In reply to donaldcallen from comment #2)

So what's the real problem here? Can't you disable password authentication in
13.1-RC1? 
Please uncomment #KbdInteractiveAuthentication no
as described in sshd_config file:
# Set this to 'no' to disable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the KbdInteractiveAuthentication and
# PasswordAuthentication.  Depending on your PAM configuration,
# PAM authentication via KbdInteractiveAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and KbdInteractiveAuthentication to 'no'.
#UsePAM yes

-- 
You are receiving this mail because:
You are the assignee for the bug.