[Bug 971] keyboard-interactive/pam leaks info about user existence

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Wed Jan 19 16:39:34 EST 2005


http://bugzilla.mindrot.org/show_bug.cgi?id=971


dtucker at zip.com.au changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
 Attachment #765 is|0                           |1
           obsolete|                            |




------- Additional Comments From dtucker at zip.com.au  2005-01-19 16:39 -------
Created an attachment (id=771)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=771&action=view)
Make kbdint call driver even for invalid logins

Instead of always continuing, this patch now leaves it up to the individual
drivers and adds a authctxt->valid check to bsdauth to maintain the current
behavior for it.



------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.




More information about the openssh-bugs mailing list