stribika
commented
9 years ago Yeah, unless you actually configured PAM for something other than passwords. The way it is now, ssh asks me for a password if I delete the client keys.
Closed jasonkarns closed 9 years ago
stribika
commented
9 years ago Yeah, unless you actually configured PAM for something other than passwords. The way it is now, ssh asks me for a password if I delete the client keys.
Aren't ChallengeResponseAuthentication and PasswordAuthentication usually set in tandem (both enabled or both disabled)? If recommending to disable PasswordAuthentication, shouldn't ChallengeResponseAuthentication also be disabled? (unless using PAM with Google Authenticator)