[NBLUG/talk] * password in /etc/shadow
Walter Hansen
gandalf at sonic.net
Wed Jul 26 00:27:25 PDT 2006
Scott Doty wrote:
> On Tue, Jul 25, 2006 at 05:43:00PM -0700, Walter Hansen wrote:
>> I want to configure a user for key auth only. Is replacing the password
>> hash in /etc/shadow with * what I want?
>
> That will work, but restricts the services they can use to those that don't
> need a password (i.e., public key authentication).
>
> Also, take a peek at the "PasswordAuthentication" and "PermitRootLogin"
> directives in "man sshd_config" ...
>
> -Scott
That's exactly what I want. The user is for backup purposes only. I'm
using rsync to download backup files to a local server (from a couple of
your servers actually). Passwordless login gives me the creeps unless
it's nessicary for scripting or another reason.
More information about the talk
mailing list