> however, the users can copy the shared key if the need to. If the user knew anything about capabilities, and were calling ssh manually, they could. However, they are perl scripts which expect to find the capabilities in /etc/