Ping a Specific Port

Question

Dave Everitt

Asked: 2021-03-15 09:27:16 +0800 CST2021-03-15 09:27:16 +0800 CST 2021-03-15 09:27:16 +0800 CST

For SSH access only, do I leave `#PubkeyAuthentication yes` commented out in sshd_config, or uncomment it?

772

Just setting up a new Debian 10 server having uploaded my public SSH keys, not restarted sshd yet.

I can now log in without password, so now doing all the usual recommended edits in /etc/ssh/sshd_config:

ChallengeResponseAuthentication no
usePAM no
PermitRootLogin no
PasswordAuthentication no

BUT I'm wondering if leaving #PubkeyAuthentication yes commented out means "no setting" i.e. as some posts seem to indicate I can still SSH in pw-free without explicitly uncommenting this line?

1 Answers

Voted

Andrew Schulman · Answer 1 · 2021-03-15T15:15:08+08:00

Best Answer

Andrew Schulman

2021-03-15T15:15:08+08:002021-03-15T15:15:08+08:00

man sshd_config will show you that yes is the default value for PubkeyAuthentication. So you can leave it commented out; it's the same as yes.

The stock sshd_config file also includes a comment at the top, saying that it comes with the default values present but commented out.

2

For SSH access only, do I leave `#PubkeyAuthentication yes` commented out in sshd_config, or uncomment it?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?