[Bug 2211] Too many hostbased authentication attempts

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Jan 10 12:13:37 AEDT 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2211

--- Comment #1 from Iain Morgan <imorgan at nas.nasa.gov> ---
Would it be possible to have sshd disable hostbased authcation if
auth_rhosts2() fails? That would catch the majority of cases where
repeated hostbased auth attempts with different keys is pointless.

In other words, if auth_rhosts2() fails, it will fail for all key
types,
so there is really no point in letting the client make further attempts
using that authentication method.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list