use K12Linux with "PasswordAuthentication no"

Discussion:

Johan Vermeulen

2013-01-08 16:42:22 UTC

Dear All,

in order to secure some servers, I would like to use
"PasswordAuthentication no" in
/etc/ssh/sshd_config

However, if I do that, it goes for all interfaces, making it impossible
to log in from the thinclients.

Does anybody know of a workaround on order to still be able to do this?

Many thanks for any advise.

Greetings, J.

--
Johan Vermeulen
IT-medewerker
Caw De Kempen
***@cawdekempen.be
0479.82.01.41

Opensource Software is the future.

Josh Malone

2013-01-08 16:36:03 UTC

Permalink

Post by Johan Vermeulen
Dear All,
in order to secure some servers, I would like to use
"PasswordAuthentication no" in
/etc/ssh/sshd_config
However, if I do that, it goes for all interfaces, making it
impossible to log in from the thinclients.
Does anybody know of a workaround on order to still be able to do this?
Many thanks for any advise.
Greetings, J.

My gut instinct is to run 2 copies of sshd, one on each interface. I
think you can just have 2 copies of the config file and start them with
adding the "-f /etc/sshd_other_config" option.

-Josh

--
---------------------------------------------------------
Joshua Malone Systems Administrator
(***@nrao.edu) NRAO Charlottesville
434-296-0263 www.nrao.edu
434-249-5699 (mobile)
---------------------------------------------------------

Johan Vermeulen

2013-01-08 16:55:38 UTC

Permalink

Post by Josh Malone

My gut instinct is to run 2 copies of sshd, one on each interface. I
think you can just have 2 copies of the config file and start them
with adding the "-f /etc/sshd_other_config" option.
-Josh

That is exactly the solution I was looking for. Looks perfectly doable.

Many thanks.

Greetings, J.