[Bug 263045] sshd allows password logins when "PasswordAuthentication no" is set

From: <bugzilla-noreply_at_freebsd.org>
Date: Tue, 05 Apr 2022 12:29:48 UTC

--- Comment #3 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> ---
(In reply to donaldcallen from comment #2)

So what's the real problem here? Can't you disable password authentication in
Please uncomment #KbdInteractiveAuthentication no
as described in sshd_config file:
# Set this to 'no' to disable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the KbdInteractiveAuthentication and
# PasswordAuthentication.  Depending on your PAM configuration,
# PAM authentication via KbdInteractiveAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and KbdInteractiveAuthentication to 'no'.
#UsePAM yes

You are receiving this mail because:
You are the assignee for the bug.