sshd_config use `AuthenticationMethods publickey` for redundancy, think about what if they changed some defaults auth method from no to yes

author: Xiao Pan <gky44px1999@gmail.com> 2023-07-31 20:18:11 -0700
committer: Xiao Pan <gky44px1999@gmail.com> 2023-07-31 20:19:57 -0700
commit: 2f93e605a592ad39dfe0ef04bf76eb315ea6a727 (patch)
tree: 6d8bdc712d511297124c921230f68ead29291142 /etc/ssh/sshd_config
parent: 64b842d2fd8acabb17478004faf82d27ac44d953 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/etc/ssh/sshd_config b/etc/ssh/sshd_config
index fb66c21d..f66c0efd 100644
--- a/etc/ssh/sshd_config
+++ b/etc/ssh/sshd_config
@@ -114,3 +114,7 @@ Subsystem	sftp	/usr/lib/ssh/sftp-server
 #	AllowTcpForwarding no
 #	PermitTTY no
 #	ForceCommand cvs server
+
+# Based on manpage, setting PasswordAuthentication no, and default KbdInteractiveAuthentication no, with other defaults seems already equivalent to AuthenticationMethods publickey, but I still put it here for redundancy.
+# https://wiki.archlinux.org/title/OpenSSH#Force_public_key_authentication
+AuthenticationMethods publickey
author	Xiao Pan <gky44px1999@gmail.com>	2023-07-31 20:18:11 -0700
committer	Xiao Pan <gky44px1999@gmail.com>	2023-07-31 20:19:57 -0700
commit	2f93e605a592ad39dfe0ef04bf76eb315ea6a727 (patch)
tree	6d8bdc712d511297124c921230f68ead29291142 /etc/ssh/sshd_config
parent	64b842d2fd8acabb17478004faf82d27ac44d953 (diff)