F22 System Wide Change: Set sshd(8) PermitRootLogin=no
Alexander Ploumistos
alex.ploumistos at gmail.com
Fri Jan 9 14:32:06 UTC 2015
On Fri, Jan 9, 2015 at 4:14 PM, Paul Wouters <paul at nohats.ca> wrote:
> My systems are set up that way, you can't just ssh in from anywhere, you
>> can only ssh in from machines that have your private key. If you try
>> to log in without a pre-shared key, it won't prompt you for your unix
>> password, it will just fail.
>>
>
> If your public key authentication fails, it still prompts you for a
> password but even if you have set a password it will reject it. This is
> to prevent leaking configuration information (eg to avoid telling
> attackers whether or not password based logins are allowed in the
> machine)
I got a little confused here. I also have my server systems set up to only
use keys. Is it possible to have that along with a "dummy" password prompt
that always fails? If yes, which directives in sshd configuration
accomplish that?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/devel/attachments/20150109/a722da88/attachment.html>
More information about the devel
mailing list