[Bug 1432] MaxAuthTries is not used correctly

bugzilla-daemon at bugzilla.mindrot.org bugzilla-daemon at bugzilla.mindrot.org
Tue Jan 29 00:45:56 EST 2008


https://bugzilla.mindrot.org/show_bug.cgi?id=1432





--- Comment #2 from Jan Pechanec <Jan.Pechanec at Sun.COM>  2008-01-29 00:45:52 ---
makes sense. I can see that DEFAULT_AUTH_FAIL_MAX is 6. None, 2
hostbased and 2 pubkey auth tries makes 5 of them. While this won't
break many automated systems (I don't think that many configurations
have more than 2 public keys, for example) it would leave just one try
for password/kbd-interactive auth.

to increase DEFAULT_AUTH_FAIL_MAX to 8 sounds very logical.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.


More information about the openssh-bugs mailing list