Re: Have I been hacked?
On 10.01.2015 13:39, Joel Rees wrote:
> On Sat, Jan 10, 2015 at 12:24 PM, scott <redhowlingwolves@gmx.com> wrote:
[snip]
>> I would much rather use a key with a passphrase.
>
> What you do when you use an SSH key is introduce two stages of authentication.
[snip]
In wheezy (7) you have to choose one or the other, keys or password
unless you are using openssh-server 6.6 from backports. Since 6.3, the
server will allow both a key and a password to be required¹. See the
option "AuthenticationMethods" in the manual page for sshd_config.
In testing, (upcoming jessie aka debian 8) you have a newer version of
the server, 6.7.
Further down the line, in 6.8, it looks like the option even for
requiring multiple keys will be allowed².
Regards,
/Lars
¹ http://www.openssh.com/txt/release-6.3
² https://bugzilla.mindrot.org/show_bug.cgi?id=2323
Reply to: