On 6/26/06, Lothar Braun <[EMAIL PROTECTED]> wrote:
But i don't think you want any of these. You mentioned early that you
(the friendly system administrator) should be the only one, who can add
authorized keys.
That means that you have to create a system-wide authorized_keys file,
that is only w
On Mon, 2006-06-26 at 18:40 -0400, Eric d'Alibut wrote:
> > AuthorizedKeysFile %u/.ssh/authorized_keys
> >
> > will make sshd look at /home/bob/.ssh/authorized_keys
> > and /home/alice/.ssh/authorized_keys (and it won't find the
> > authorized_keys file from alice, because /home/alice doesn't exist
On 6/26/06, Lothar Braun <[EMAIL PROTECTED]> wrote:
Let's go:
Awesome.
bob with home directory /home/bob/
alice with home directory /nfs-share/all-homes/alice/
AuthorizedKeysFile %h/.ssh/authorized_keys
in your sshd_config, sshd will look at /home/bob/.ssh/authorized_keys
and /nfs-share/
On Mon, 2006-06-26 at 16:50 -0400, Eric d'Alibut wrote:
> On 6/25/06, Lothar Braun <[EMAIL PROTECTED]> wrote:
>
> > You should define a global authorized_keys file then. Use
> > AuthorizedKeysFile in your /etc/ssh/sshd_conf to set the path to your
> > file.
>
> I note in the sshd_config man page
On 6/25/06, Lothar Braun <[EMAIL PROTECTED]> wrote:
You should define a global authorized_keys file then. Use
AuthorizedKeysFile in your /etc/ssh/sshd_conf to set the path to your
file.
I note in the sshd_config man page that the AuthorizedKeysFile may
make use of tokens ('%h') for things such
On 6/25/06, Stephen <[EMAIL PROTECTED]> wrote:
I did this recently and there should be some relevant information if you
search the archives on my e-mail address.
Bingo. That thread did the trick for me. Here's what I came up with,
for pertinent sshd_config lines:
PasswordAuthentication no
Cha
On Sun, 2006-06-25 at 17:47 -0400, Eric d'Alibut wrote:
> I want to turn off ordinary unix password logins. and I want restrict
> ssh logins to only users with an ssh pub key in their authorized_key
> files
Turn PasswordAuthentication to no and PubkeyAuthentication to yes in
On Sun, Jun 25, 2006 at 05:47:03PM -0400 or thereabouts, Eric d'Alibut wrote:
> I want to tighten up network logins to a Debian stable machine.
>
> I want to turn off ordinary unix password logins. and I want restrict
> ssh logins to only users with an ssh pub key in their autho
I want to tighten up network logins to a Debian stable machine.
I want to turn off ordinary unix password logins. and I want restrict
ssh logins to only users with an ssh pub key in their authorized_key
files (to be placed there by me, your friendly sysadmin).
Any pointers as to how to do this
9 matches
Mail list logo
