如何禁用 gitolite 用户的 pam 身份验证
我在 RHEL Linux 主机上安装了 gitolite。它可以正常工作,并且正在完成接受 ssh 密钥的工作。
我已指示我的用户使用 tortoisegit 作为其存储库的管理工具。这是因为 tortoisegit 附带了 ssh 密钥生成器和 pageant。随着选美比赛的进行,并且他们的密钥已加载,它工作得很好。
但。
一些用户忘记加载密钥,他们会收到一个弹出窗口,要求输入 gitolite 用户密码。对话框标题:TortoisePlik 内容:[电子邮件受保护] 密码: 对话框图像: http://i.imgur.com/Vbbk7.png
有办法吗我可以通过更改服务器端的配置(例如 pam 或 sshd 中的配置)来拒绝此对话框吗?
I have gitolite setup on a RHEL linux host. It is functional and it's doing its job of accepting ssh keys.
I've instructed my users to use tortoisegit as the management tool of their repositories. This is because tortoisegit comes with a ssh key generator, and the pageant. With the pageant running, and their key loaded, it works fine.
BUT.
some of the users forget to load the key, and they get a popup asking for the gitolite user password. dialog title:TortoisePlik content: [email protected] password:
image of dialog: http://i.imgur.com/Vbbk7.png
is there a way I could deny this dialog by changing a configuration on the server side, like in pam or sshd?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
SSH服务器中配置SSH认证方式;对于 OpenSSH –
/etc/ssh/sshd_config。如
sshd_config(5),可以在Match块中设置某些选项。添加Match User git块,并在其中禁用密码和键盘交互身份验证方法:SSH authentication methods are configured in the SSH server; for OpenSSH –
/etc/ssh/sshd_config.As described in
sshd_config(5), certain options can be set in aMatchblock. Add aMatch User gitblock, and inside it disable password and keyboard-interactive authentication methods:如果您尝试限制客户端仅进行公钥身份验证,则可以使用以下匹配语句:
If you're trying to restrict clients to publickey auth only, you can use the following match statement: