OpenSSH v6.7 & NumberOfPasswordPrompts Option ...
Trey Henefield
trey.henefield at ultra-ats.com
Fri Jan 16 07:53:39 AEDT 2015
I have tried giving the options " ChallengeResponseAuthentication=no" and "KbdInteractiveAuthentication=no", with no change in behavior.
I did try " PasswordAuthentication=no" and that did remove the second prompt, but password authentication is what I am trying to achieve. I am also using PAM via "UsePAM=yes" option.
Best regards,
Trey Henefield, CISSP
Senior IAVA Engineer
Ultra Electronics
Advanced Tactical Systems, Inc.
4101 Smith School Road
Building IV, Suite 100
Austin, TX 78744 USA
Trey.Henefield at ultra-ats.com
Tel: +1 512 327 6795 ext. 647
Fax: +1 512 327 8043
Mobile: +1 512 541 6450
www.ultra-ats.com
-----Original Message-----
From: Iain Morgan [mailto:imorgan at nas.nasa.gov]
Sent: Thursday, January 15, 2015 12:53 PM
To: Trey Henefield
Cc: openssh-unix-dev at mindrot.org
Subject: Re: OpenSSH v6.7 & NumberOfPasswordPrompts Option ...
On Thu, Jan 15, 2015 at 15:29:18 +0000, Trey Henefield wrote:
> Greetings,
>
> I discovered an issue in the latest version of SSH, where the number of password prompts are doubled. If I specify 1, I get 2, and so on.
>
Could you give a bit more detail? I just tried with 6.7p1 and got the expected number of password prompts. Are the prompts all identical?
Perhaps you have both PasswordAuthentication and ChallengeResponseAuthentication enabled, or perhaps the multiple prompts are due to your PAM configuration if you are using ChallengeResponseAuthentication?
--
Iain Morgan
Disclaimer
The information contained in this communication from trey.henefield at ultra-ats.com sent at 2015-01-15 15:53:46 is confidential and may be legally privileged.
It is intended solely for use by openssh-unix-dev at mindrot.org and others authorized to receive it. If you are not openssh-unix-dev at mindrot.org you are hereby notified that
any disclosure, copying, distribution or taking action in reliance of the contents of this information is strictly prohibited and may be unlawful.
More information about the openssh-unix-dev
mailing list