Connection caching?

Darren Tucker dtucker at zip.com.au
Sun May 9 11:20:09 EST 2004


Carson Gaspar wrote:

> When I implemented this eternities ago, the purpose was to require 
> something that wasn't password based auth first, and then password auth. 
> That way, you can turn on bad password account lockout without it being 
> incredibly easy to cause a DOS.

OK, fair enough.  You could also prevent password guessing if you don't 
have lockout.

Is your patch still floating around someplace?

-- 
Darren Tucker (dtucker at zip.com.au)
GPG key 8FF4FA69 / D9A3 86E9 7EEE AF4B B2D4  37C9 C982 80C7 8FF4 FA69
     Good judgement comes with experience. Unfortunately, the experience
usually comes from bad judgement.




More information about the openssh-unix-dev mailing list