On Jan 23, 2008, at 3:07 PM, Karl Cunningham wrote:
Protocol 2
PubkeyAuthentication yes
PasswordAuthentication no
ChallengeResponseAuthentication no
PermitRootLogin no
AllowUsers list your valid user names
I actually set:
PermitRootLogin without-password
I then configure root's account so that only my ssh key (with a long
passphrase) is able to log in. It's useful if you need to so some
things as root. Note that I only do this on systems where I know I
need to access some things as root on a regular basis. Every other
system is configured as Karl notes above.
Gregory
--
Gregory K. Ruiz-Ade <[EMAIL PROTECTED]>
OpenPGP Key ID: EAF4844B keyserver: pgpkeys.mit.edu
--
[email protected]
http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
