Am 09.01.2015 um 15:14 schrieb Paul Wouters:
If your public key authentication fails, it still prompts you for a
password but even if you have set a password it will reject it. This is
to prevent leaking configuration information (eg to avoid telling
attackers whether or not password based logins are allowed in the
machine)
not true if your server is correctly configured and enforces key-auth
[root@rawhide ~]# ssh root(a)local.rhsoft.net
Permission denied (publickey).
[root@rawhide ~]#
PasswordAuthentication no
ChallengeResponseAuthentication no
GSSAPIAuthentication no
GSSAPICleanupCredentials no
X11Forwarding no
RSAAuthentication yes
PubkeyAuthentication yes
PermitEmptyPasswords no
PermitRootLogin without-password