I believe this is not possible, but someone I know insisted that it works. I don't even know what parameters to try, and I haven't found this documented anywhere.
I tried http://myserver.com/~user=username&password=mypassword but it doesn't work.
Can you confirm that it's not in fact possible to pass the user/pass via HTTP parameters (GET or POST)?
Most guides for OpenSSH configuration advise to disable password authentication in favor of key-based authentication. But in my opinion password authentication has a significant advantage: an ability to connect from absolutely anywhere without a key. If used always with a strong password, this should not be a security risk. Or should it?
This is a question regarding the OpenSSH client on Linux, MacOSX and FreeBSD.
Normally, I log into systems using my SSH key.
Occasionally, I want my SSH client to ignore my SSH key and use a password instead. If I 'ssh hostname', my client prompts me for the Passphrase to my SSH key which is an annoyance. Instead, I want the client to simply ignore my SSH key, so that the server will ask me for my password instead.
I tried the following, but I am still prompted for the passphrase to my SSH key. After this, I am prompted for my password.
ssh -o PreferredAuthentications=password host.example.org
I want to do this on the client side, without any modification of the remote host.
I've got a script that SSHes several servers using public key authentication. One of the servers has stopped letting the script log in due to a configuration issue, which means that the script gets stuck with a "Password:" prompt, which it obviously cannot answer, so it doesn't even try the rest of the servers in the list.
Is there a way to tell the ssh client not to prompt for a password if key authentication fails, but instead to just report an error connecting and let my script carry on?
Basic question from a novice:
What is the difference between authentication and authorization?