it looks like ChallengeResponseAuthentication no by itself works correctly. you still think usePam no is needed? On Thu, 2005-09-29 at 15:34 -0500, Greg Norris wrote: > On Thu, Sep 29, 2005 at 03:46:42PM -0400, Roberto C. Sanchez wrote: > > RSAAuthentication yes > > PubkeyAuthentication yes > > PasswordAuthentication no > > Don't forget "UsePAM no" and "ChallengeResponseAuthentication no".