[Bug 1266] incompatibility between s/key and keys Autentification

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Mon Dec 4 04:53:18 EST 2006


           Summary: incompatibility between s/key and keys Autentification
           Product: Portable OpenSSH
           Version: 4.4p1
          Platform: ix86
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Miscellaneous
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: GNUtoo at no-log.org

The problem is that i want to allow both keys and skey autentification

if i want the key autentification to be usefull i have to disable the
password Autentification fallback so that's what i've done:
PasswordAuthentication no
it worked fine and i was couldn't autentificate with passwords

after that i wanted to enable s/key in order to be able to login from
untrusted computers
so i've done:
ChallengeResponseAuthentication yes

after that i can logon with my password instead of the key!!!

in order to try it:
*migrate to keys instead of passwords
*add a user with a password and do not add keys to authorized_keys
try to logon with this username and password

or make the combinaison of PasswordAuthentication no and
ChallengeResponseAuthentication yes possible
or use one time keys instead of one time passworsds(would require more

------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.

More information about the openssh-bugs mailing list