OpenSSH v6.7 & NumberOfPasswordPrompts Option ...

Trey Henefield trey.henefield at
Fri Jan 16 07:53:39 AEDT 2015

I have tried giving the options " ChallengeResponseAuthentication=no" and "KbdInteractiveAuthentication=no", with no change in behavior.

I did try " PasswordAuthentication=no" and that did remove the second prompt, but password authentication is what I am trying to achieve. I am also using PAM via "UsePAM=yes" option.

Best regards,

Trey Henefield, CISSP
Senior IAVA Engineer

Ultra Electronics
Advanced Tactical Systems, Inc.
4101 Smith School Road
Building IV, Suite 100
Austin, TX 78744 USA

Trey.Henefield at
Tel: +1 512 327 6795 ext. 647
Fax: +1 512 327 8043
Mobile: +1 512 541 6450

-----Original Message-----
From: Iain Morgan [mailto:imorgan at] 
Sent: Thursday, January 15, 2015 12:53 PM
To: Trey Henefield
Cc: openssh-unix-dev at
Subject: Re: OpenSSH v6.7 & NumberOfPasswordPrompts Option ...

On Thu, Jan 15, 2015 at 15:29:18 +0000, Trey Henefield wrote:
> Greetings,
> I discovered an issue in the latest version of SSH, where the number of password prompts are doubled. If I specify 1, I get 2, and so on.

Could you give a bit more detail? I just tried with 6.7p1 and got the expected number of password prompts. Are the prompts all identical?
Perhaps you have both PasswordAuthentication and ChallengeResponseAuthentication enabled, or perhaps the multiple prompts are due to your PAM configuration if you are using ChallengeResponseAuthentication?

Iain Morgan

The information contained in this communication from trey.henefield at sent at 2015-01-15 15:53:46 is confidential and may be legally privileged.
It is intended solely for use by openssh-unix-dev at and others authorized to receive it. If you are not openssh-unix-dev at you are hereby notified that
any disclosure, copying, distribution or taking action in reliance of the contents of this information is strictly prohibited and may be unlawful.

More information about the openssh-unix-dev mailing list