On 14/03/2010 09:25, Kai Hendry wrote:
> Changing the port is a no no.
>
> 'PasswordAuthentication no' and ssh keys is the right solution. If a
> customer can't figure out how to generate an ssh key with puttgen or
> ssh-keygen, I wouldn't take them.
I almost always use keys, but keep password access (to my user account)
for the situations where I wasn't on a machine where I had my keys setup.
I used to have them solely on my laptop and home linux server.
This has improved now with ssh access (with a passworded key) from my phone.
Root access via ssh is disallowed (as it's all done via sudo from my
account or the console)
--
Dee Earley (dee@???)
irc:
irc://irc.blitzed.org/
web:
http://www.earlsoft.co.uk
phone: +44 (0)780 8369596
