So, my questions:
1. How do I disable password authentication - i.e. force to use the DSA keys?
Make sure all 'password' auth is disabled and publickey is enabled.
<sshd_config>
PasswordAuthentication no
UseLogin no
UsePAM no PubkeyAuthentication yes
2. Can I use both for added security - i.e. using the keys and then get prompted for password?
There was some work stared on this type of thing last year, but I don't think it was every finalized...
http://marc.theaimsgroup.com/?l=openssh-unix-dev&m=108552250117169&w=2
- jw
You can add a passphrase to your key using ssh-keygen. If you use a password you get something like this when you login.
[EMAIL PROTECTED]:/usr/home/chris$ ssh myserver.net Enter passphrase for key '/home/chris/.ssh/id_dsa':
Chris _______________________________________________ [email protected] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
