[NBLUG/talk] * password in /etc/shadow

Walter Hansen gandalf at sonic.net
Wed Jul 26 00:27:25 PDT 2006


Scott Doty wrote:
> On Tue, Jul 25, 2006 at 05:43:00PM -0700, Walter Hansen wrote:
>> I want to configure a user for key auth only. Is replacing the password
>> hash in /etc/shadow with * what I want?
> 
> That will work, but restricts the services they can use to those that don't
> need a password (i.e., public key authentication).
> 
> Also, take a peek at the "PasswordAuthentication" and "PermitRootLogin"
> directives in "man sshd_config" ...
> 
>  -Scott


That's exactly what I want. The user is for backup purposes only. I'm 
using rsync to download backup files to a local server (from a couple of 
your servers actually). Passwordless login gives me the creeps unless 
it's nessicary for scripting or another reason.



More information about the talk mailing list