Skip to main content
Unix & Linux

You are not logged in. Your edit will be placed in a queue until it is peer reviewed.

We welcome edits that make the post easier to understand and more valuable for readers. Because community members review edits, please try to make the post substantially better than how you found it, for example, by fixing grammar or adding additional resources and hyperlinks.

6
  • After setting AuthenticationMethods none, would the server authenticate based solely on user identifier? Commented Dec 23, 2021 at 23:27
  • @epl No, the manpage mentions that it is used to allow empty passwords: ' "none" (used for access to password-less accounts when PermitEmptyPasswords is enabled) ' Commented Dec 24, 2021 at 3:38
  • Is there any configuration that would cause the server to authenticate a user (or group of users, or all users) unconditionally, even if if the user's system account has a password? Commented Dec 24, 2021 at 5:05
  • Not as far as I can tell. The associated RFC defines the 'none' authentication method as a special case, explicitly stating that it 'MUST NOT be listed as supported by the server.' You can review the SSH specs here: openssh.com/specs.html (1/2) Commented Dec 24, 2021 at 8:04
  • From a historical sense, SSH evolved as a modern-day secure equivalent of tools such as rlogin and telnet. These tools did permit logins without authentication, and had other shortcomings. AFAIK, they still 'work', in the sense that you can connect to a remote system and get a shell. Perhaps you should take a look at some of these tools? (2/2) Commented Dec 24, 2021 at 8:06