Re: SSH package concerns...
Nathan Dragun wrote:
> PasswordAuthentication is set to no by default, as enabling it causes
> cleartext password authentication (obviously defeating the point of
> encrypting it in the first place).
No, it doesn't. It defaults to Off because Debian wants SSH to use PAM
for system account authentication, and not do it itself.
> And yes UsePAM = yes was set, for clarification. So I'd assume that
> meant that PAM authentication was final?
Nope, it's dependent on SSH configuration.
Adam
Reply to: