ssh authentication configuration?

To: debian-security@lists.debian.org
Subject: ssh authentication configuration?
From: Stephen Johnson <steve@webninja.com>
Date: 28 May 2002 17:51:02 -0700
Message-id: <[🔎] 1022633464.317.21.camel@monkeypaw>

Hello, i'm confused on a couple variables in the sshd_config file, i
have a client that's using that 'other os' and has an ssh client that he
likes. however, he wanted me to secure the server as much as possible,
i've always disabled clear text passwords(PasswordAuthentication no),
and turn on pam auth (PAMAuthenticationViaKbdInt yes).  That's always
worked fine for me as i'm using debian linux, and i don't actually know
why i do it other than in the conf file debian adds a comment above
telling me to do so, so i do.  Well, my clients ssh client app doesn't
seem to be able to handle pam auth, so when i disable clear text passes
it won't let him in, even though i can get in with his account from my
ssh client.  i guess what i'm asking is, "How much of a security risk is
using regular auth versus Pam?". 

thanks in advance for your help.
steve

-- 
"I have never let my schooling interfere with my education. " - Mark
Twain
	- Steve Johnson
	- steve@webninja.com
	- http://steve.webninja.com


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: ssh authentication configuration?
  - From: Joshua Goodall <joshua@myinternet.com.au>
- Re: ssh authentication configuration?
  - From: Matt Zimmerman <mdz@debian.org>
- Re: ssh authentication configuration?
  - From: Will Aoki <waoki@umnh.utah.edu>

Prev by Date: Re: pam_unix and remember [OT]
Next by Date: Re: ssh authentication configuration?
Previous by thread: Re: pam_unix and remember [OT]
Next by thread: Re: ssh authentication configuration?
Index(es):
- Date
- Thread