rhosts/shosts handling in sshd
Thomas Köller
thomas at koeller.dyndns.org
Mon Dec 19 02:20:35 AEDT 2022
Am 18.12.22 um 16:07 schrieb Todd C. Miller:
> As for the reason, just because you want to allow unprivileged users
> to be able to login from one system without a password does not
> mean you necessarily want the root user to be able to do so as well.
> I think it still makes sense to require root equivalency to be
> explicitly set via .rhosts/.shosts if you are going to be using
> host-based authentication.
Thanks. This may be true if hostbased were used on its own. What I am
trying to do, however, is
AuthenticationMethods hostbased,publickey
in order to increase security.
Thomas
More information about the openssh-unix-dev
mailing list