authorized_keys location (cont)

Change location by editing sshd_config

  server#  grep AuthorizedKeysFile /etc/ssh/sshd_config
  AuthorizedKeysFile /etc/ssh/keys/%u

  server# ls -s /etc/ssh/keys/*
  8  /etc/ssh/keys/arioch
  10 /etc/ssh/keys/bri
  5  /etc/ssh/keys/lainee
  4  /etc/ssh/keys/reegen
  6  /etc/ssh/keys/root
  4  /etc/ssh/keys/xahria

Directory should be writable by root only.
If user is trustworthy, give them ownership of their keyfile.
If user is not trustworthy, have keyfile owned by root.