Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Secure-Shell
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Authentication type per user

from [James Stickland] Network Security [Permanent Link]
Subject: Authentication type per user
Date: Sat, 3 Feb 2007 05:31:14 -0500 
Hi, using OpenSSH 4.5, protocol 2.0 on Intel platform Linux 2.6.X

What I want to do is has per-user authentication types.  The system default
is to do public key authentication, however, some users don't understand the
concept of carrying around a private key or creating one, so I would like
those users to use password authentication.  Unfortunately, after using a
"match user" in my sshd_config, I was not allowed to add
"PasswordAuthentication yes".  Anyone know how to overcome this?

As for my second issue for today, I was wondering how one might do the
following: publickey authentication followed by password authentication.  I
have enabled both in my sshd_config, but it seems that only one is used to
authenticate at a time, as though a user can choose what to use. I want it
so both are required to get in, so the login screen might look like so:

login as: dude
Authenticating with public key "James_Stickland"
Passphrase for key "James_Stickland":
Password:
Last login: .........
shell#

I was able to do such a thing with various commercial SSH daemons.  Thanks
for any help.
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Authentication type per user, James Stickland <=
Previous by Date:  Re: openssh outbound client connection logging., dj
Next by Date:  No credentials cache found, Noah
Previous by Thread:  Re: openssh outbound client connection logging., dj
Next by Thread:  No credentials cache found, Noah
Indexes:  [Date] [Thread] [Top] [All Lists]