[Bug 1922] Disabling ChallengeResponseAuthentication also disables KbdInteractiveAuthentication
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Fri Sep 10 16:24:01 AEST 2021
https://bugzilla.mindrot.org/show_bug.cgi?id=1922
Darren Tucker <dtucker at dtucker.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |dtucker at dtucker.net
Status|NEW |RESOLVED
Resolution|--- |FIXED
--- Comment #1 from Darren Tucker <dtucker at dtucker.net> ---
OpenSSH 8.7 fixed this by removing the distinction between the two,
they're now equivalent (with ChallengeResponseAuthentication being the
deprecated alias). From https://www.openssh.com/releasenotes.html#8.7
* ssh(1)/sshd(8): remove references to ChallengeResponseAuthentication
in favour of KbdInteractiveAuthentication. The former is what was in
SSHv1, the latter is what is in SSHv2 (RFC4256) and they were
treated as somewhat but not entirely equivalent. We retain the old
name as a deprecated alias so configuration files continue to work
as well as a reference in the man page for people looking for it.
bz#3303
Thanks for the report.
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list