On Mon, Feb 1, 2010 at 6:49 PM, Warren Michelsen Warren@mdcclxxvi.com wrote:
Check the permission all your top level directories and the .ssh directories and it's files.
Basically, group and other writes are forbidden since it would allow other people to change your keys.
If you're allowing the use of passwords and keys, then it's just falling back to passwords because the permissions are incorrect.
And I presuming the secret key is not encrypted, i.e., you never set a passphrase - hence the root login works without a password since the permissions are correct for key exchange.
Also, on Redhat/Centos/Solaris machines, it's
PermitRootLogin no
or
PermitRootLogin yes
and not
PermitRootLogin without-password
There should be separate entry for passwords
PermitEmptyPasswords no
You have to be barking mad to allow root connections - or any connection - with an empty passwords.
Note, this isn't Mac mailing list so your mileage will vary. Without a sshd_config file it's hard to help you.