[Bug 263045] sshd allows password logins when "PasswordAuthentication no" is set
Date: Tue, 05 Apr 2022 12:29:48 UTC
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=263045 --- Comment #3 from Marek Zarychta <zarychtam@plan-b.pwste.edu.pl> --- (In reply to donaldcallen from comment #2) So what's the real problem here? Can't you disable password authentication in 13.1-RC1? Please uncomment #KbdInteractiveAuthentication no as described in sshd_config file: # Set this to 'no' to disable PAM authentication, account processing, # and session processing. If this is enabled, PAM authentication will # be allowed through the KbdInteractiveAuthentication and # PasswordAuthentication. Depending on your PAM configuration, # PAM authentication via KbdInteractiveAuthentication may bypass # the setting of "PermitRootLogin without-password". # If you just want the PAM account and session checks to run without # PAM authentication, then enable this but set PasswordAuthentication # and KbdInteractiveAuthentication to 'no'. #UsePAM yes -- You are receiving this mail because: You are the assignee for the bug.