Password auth for ssh is comparatively very insecure, especially if you must share one password between everyone. (Supporting many passwords is probably more work than it's worth, adds edge cases, and doesn't actually increase security that much.)

Is it worth adding as a low-security option?

How do we discourage people from using it by default? (Maybe a loud warning message when ssh-chat is started with this feature?)

Can we do something to make key-based whitelists more user friendly so people aren't tempted to use password auth?