keyboard-interactive
Frank Cusack
fcusack at fcusack.com
Fri Jan 11 08:50:40 EST 2002
On Thu, Jan 10, 2002 at 03:20:10PM +0100, Markus Friedl wrote:
> On Thu, Jan 10, 2002 at 09:15:50AM -0500, Nicolas Williams wrote:
> > On Thu, Jan 10, 2002 at 02:50:03PM +0100, Markus Friedl wrote:
> > >
> > > yes, this uglyness is currently used:
> > >
> > > dispatch_run()
> > > input_userauth_request()
> > > userauth_kbdint()
> > > auth2_pam()
> > > pam_authenticate()
> > > do_pam_conversation_kbd_int()
> > > dispatch_run()
> >
> > I don't think that's ugly... It would be easier if all PAM
> > implementations supported PAM_CONV_AGAIN/PAM_INCOMPLETE/pam_*()
> > restarts though.
>
> well, i think that's a major uglyness. in the future don't
> want to have it possible to call dispatch_run() at all.
I also don't think it's ugly; it makes it pretty easy to fix the
new-userauth-request problem and to handle any arbitrary packet.
I was actually going to comment on how nice it was.
/fc
More information about the openssh-unix-dev
mailing list