[Bug 1266] incompatibility between s/key and keys Autentification

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon Dec 4 04:53:18 EST 2006


http://bugzilla.mindrot.org/show_bug.cgi?id=1266

           Summary: incompatibility between s/key and keys Autentification
           Product: Portable OpenSSH
           Version: 4.4p1
          Platform: ix86
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Miscellaneous
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: GNUtoo at no-log.org


The problem is that i want to allow both keys and skey autentification

if i want the key autentification to be usefull i have to disable the
password Autentification fallback so that's what i've done:
PasswordAuthentication no
it worked fine and i was couldn't autentificate with passwords

after that i wanted to enable s/key in order to be able to login from
untrusted computers
so i've done:
ChallengeResponseAuthentication yes

after that i can logon with my password instead of the key!!!

in order to try it:
*migrate to keys instead of passwords
*add a user with a password and do not add keys to authorized_keys
try to logon with this username and password

solution:
or make the combinaison of PasswordAuthentication no and
ChallengeResponseAuthentication yes possible
or use one time keys instead of one time passworsds(would require more
work)




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.


More information about the openssh-bugs mailing list