4.x, PAM, password facility
Peter Pentchev
roam at ringlet.net
Sun Jun 20 23:54:49 PDT 2004
On Fri, Jun 18, 2004 at 04:26:19PM -0400, Charles Sprickman wrote:
[snip]
> And since I know there's someone lurking here that knows this, is there
> any way to have OpenSSH deny a login when a user has key-based auth setup
> on their account? I never found a good way to take care of that; changing
> the shell, etc. is a bit awkward.
The sshd_config(5) manual page for OpenSSH in both -STABLE and -CURRENT
mentions Allow/DenyUsers/Groups. I'm not sure how long this has been
around, though - I seem to remember a time when only ssh.com's sshd
supported this.
G'luck,
Peter
--
Peter Pentchev roam at ringlet.net roam at sbnd.net roam at FreeBSD.org
PGP key: http://people.FreeBSD.org/~roam/roam.key.asc
Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553
If I had finished this sentence,
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-security/attachments/20040621/85ce45b9/attachment.bin
More information about the freebsd-security
mailing list