On Jan 9, 2011, at 2:00 PM, [email protected] wrote: > Message: 1 > Date: Sat, 8 Jan 2011 16:33:45 -0500 > From: "Levan, Jerry" <[email protected]> > Subject: Re: Forcing Public Key Authentication for sshd? > To: "[email protected] Admin" <[email protected]> > Message-ID: <[email protected]> > Content-Type: text/plain; charset="us-ascii" > > Grumble, > > sshd_config lies... > > Checking the security log shows that ssh is using PAM even > though sshd_config had > > #UsePAM no > > I had to uncomment the above line and reboot to get > password authentication killed. >
Hmmm. Shouldn't need reboot. > ....Hold the phone... > I just checked another one of my macs and the sshd_config file > is *different* from the one on the server! They are running the > same OS version and level. > > My other mac has > #UsePAM yes > and more discussion prior to the directive. > > I can understand that PAM needs to be used on macs due to the unique > way that mac os handles passwords. > > I seem to recall that I had to use PAM to get qpopper to work a > long time ago :) > > Oh well, one question answered... > > Jerry > I used info from two different sites to get this working properly. http://smbjorklund.no/ssh-login-without-password-using-os-x http://hints.macworld.com/article.php?story=2005021023215253 You do need to set UsePAM no Also set: PermitRootLogin no PasswordAuthenication no ChallengeResponseAuthentication no There are a few other hint at those sites as well. _______________________________________________ MacOSX-admin mailing list [email protected] http://www.omnigroup.com/mailman/listinfo/macosx-admin
