[rjh29]

Well that is how I read it :P I think it would be good to point out that you can add other Host sections to override it.

[alexeldeib]

It’s about preventing identity leakage, not using password. I can’t tell if the post was edited, but it already includes how to override per host.

I value this and I universally disable password auth…on the server :)

E: as listed by others, IdentitiesOnly=yes seems like a better approach?