Les Ault wrote: > On 05/09/11 15:18, Steven Buehler wrote: >> I am trying to setup our servers to only allow logins with a >> public/private key pair. 2 of our machines have to have root login >> access with ssh and the rest, we will login as another account and su to root. <snip> >> open up the firewall to allow ssh access from anywhere, I can ssh to >> root without a password. The only uncommented lines in the >> /etc/ssh/sshd_config are the following: >> >> [snip] > > Change / uncomment PermitRootLogin with a value of without-password Yep, and yes, the meaning of the directive is *very* counter-intuitive. mark -- redhat-list mailing list unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe https://www.redhat.com/mailman/listinfo/redhat-list