Hi,
I think, you just have to modify your sshd_config file to disable that
password option. Check this extract taken from some article:
Disabling password authentication on OpenSSH
Once the user's public and private keypair are verified as correct,
it's possible to disable password authentication on the Linux server
entirely. This entirely forestalls all possible password-guessing
attempts and dramatically secures a machine.
However, for machines not physically local, it's wise to defer on
disabling password authentication until it's absolutely clear that the
keyed access is working properly, especially if multiple users are
involved. Once password authentication has been disabled, even the
root password won't allow one into the system.
Those new to public key access are encouraged to test very carefully.
The configuration of the SSH Daemon is found in the sshd_config file,
often stored in the /etc/ssh/ directory. This is a text file which is
relatively easy to read; we'll be looking for two entries to modify.
First is to set PasswordAuthentication to the value no. This may be
explicitly set to yes, or it may be commented out to rely on the
default, but we wish to explicitly disable this:
Second, we wish to disable SSH protocol version 1: this is old, has
several substantial security weaknesses, and should not be allowed
from the outside world.
Edit the configuration file and ensure that the two keyword entries
are set properly; comment out the old entries if necessary.
/etc/ssh/sshd_config
# Protocol 1,2
Protocol 2
PasswordAuthentication no
Once the configuration file has been saved, the Secure Shell daemon
must be restarted; on most platforms this can be done with the
"service" mechanism:
# service sshd restart
This kills the listening daemon and restarts it, but does not
terminate any existing individual user sessions. Those who feel this
might be a risky step are invited to simply reboot the machine.
At this point, OpenSSH will no longer accept passwords of any kind,
with access granted only for users with pre-established public keys.
HTH
Mick
On 11/2/07, Jürgen Rott <info2007@rott-home.de> wrote:
>
>
>
> Hello,
>
>
>
> first I have to tell, that I am German and my English is more or less a
> little bit poor…
>
> Anyway I have a question…
>
>
>
> I try to manage the key authorized access to my windows pc running openSSH.
> So I copied the public key of the other machine (running Linux) into the
> file „authorized_keys" in „…/root/.ssh" (home-dir) on my windows computer
> called mondrian. But if I try to connect, I'm still asked for the password
> of root@mondrian. With given password, there aren't any problems so far.
>
>
>
> Best regards,
>
>
>
> Jürgen Rott
>
>
>
>
-- List Info: http://erdelynet.com/ssh-l/ List Archives: http://erdelynet.com/archive/ssh-l/ To Unsubscribe: Mail mailto:ssh+unsubscribe@erdelynet.comReceived on Fri Nov 2 10:27:51 2007
This archive was generated by hypermail 2.1.8 : Fri Nov 02 2007 - 10:27:52 EDT