PasswordAuthentication no and protocol V2
Damien Miller
djm at mindrot.org
Mon May 21 22:41:11 EST 2001
On Mon, 21 May 2001, Gordon Rowell wrote:
> PasswordAuthentication seems to be accepted regardless when DSA
> authentication is not available. Client and server are Linux -
> openssh-2.5.2p2-1.7.2
This is a byproduct of allowing PAM authentication via the
SSH protocol 2 "kbd-interactive" authentication method.
Portable OpenSSH 2.9p1 adds as "PAMAuthenticationViaKbdInt" (default: no)
which can better control this.
-d
--
| Damien Miller <djm at mindrot.org> \ ``E-mail attachments are the poor man's
| http://www.mindrot.org / distributed filesystem'' - Dan Geer
More information about the openssh-unix-dev
mailing list