OpenSSH 2.3.0p1 port to BSDI BSD/OS
David J. MacKenzie
djm at web.us.uu.net
Sun Feb 18 09:58:38 EST 2001
> could you please try this, does kerberos+password work?
> does skey work? does user:style work with challenge-
> reposnse in ssh1 and ssh2?
I actually stopped using S/Key when ssh became prevalent, so I don't
have it set up any more. However, the auth style stuff now works
for passwd and krb5.
The error message for approval is wrong, though. auth_approval()
does not set errno, so it produces this sort of message:
djm at air 397 $ ssh catapult
djm at catapult's password:
Approval failure: Undefined error: 0
Connection to catapult closed.
It looks like you should be using error() instead of perror().
> Index: session.c
> --- session.c 2001/02/16 14:03:43 1.56
> +++ session.c 2001/02/16 21:15:54
> @@ -837,8 +833,13 @@
> (LOGIN_SETALL & ~LOGIN_SETPATH)) < 0) {
> perror("unable to set user context");
> exit(1);
> -
> }
> +#ifdef BSD_AUTH
> + if (auth_approval(NULL, lc, pw->pw_name, "auth-ssh") <= 0) {
> + perror("Approval failure");
> + exit(1);
> + }
> +#endif
> #else
> if (setlogin(pw->pw_name) < 0)
> error("setlogin failed: %s", strerror(errno));
More information about the openssh-unix-dev
mailing list