keyboard-interactive
Frank Cusack
fcusack at fcusack.com
Thu Jan 10 21:55:04 EST 2002
On Thu, Jan 10, 2002 at 09:48:57AM +0100, Markus Friedl wrote:
> On Thu, Jan 10, 2002 at 12:10:26AM -0800, Frank Cusack wrote:
> > But KEXINIT (or any other non-auth message) /need not/ be handled
> > "synchronously".
>
> as i understand the transport draft, the KEXINIT
> is handled by a lower layer, and if the client
> send a KEXINIT message after the USERAUTH_REQUEST message,
> then the lower layer must finish the key exchange
> before continuing with the user authentication.
This should be clarified to read any non-auth message received by
the auth layer, then. Natch, if the auth layer doesn't receive the
message, it's immaterial. KEXINIT may be been a bad example.
/fc
More information about the openssh-unix-dev
mailing list