Call for testing for 3.5 OpenSSH

[Damien Miller]

On Thu, 2002-09-26 at 23:14, Lacoss-Arnold, Jason wrote:
> For whatever its worth, we're doing the same thing with no problems so far.
> We turned the auth-pam stuff on and privsep off.  We'd love to use privsep,
> but usable password aging is more important.

You are so wrong...

How many break-ins are achieved by guessed passwords? 

How many by exploiting bugs in server software?

-d