In article <4236026C.2050407@entropy.homeip.net>,
maximum entropy  <entropy@entropy.homeip.net> wrote:
>
>That's worded way too vaguely for me to tell if you're understanding the 
>problem or not.  The pam_ssh module isn't "loading" any keys in the 
>sense of using those keys themselves for authentication.  It just allows 
>the *passphrase* for the private key to be used as an *additional* login 
>password for the account containing that private key.  In many common 
>cases, that passphrase will be too weak to be desirable as a login 
>password.  So in the true UNIX tradition, go ahead and give the admin 
>the rope, but *please* don't hang him with it by default.  Please!
>

I commented out pam_ssh from all the /usr/src/etc/pam.d files.

christos