From owner-cvs-all Thu Apr 25 5:39:14 2002 Delivered-To: cvs-all@freebsd.org Received: from yello.shallow.net (yello.shallow.net [203.18.243.120]) by hub.freebsd.org (Postfix) with ESMTP id 0AE5137B42B; Thu, 25 Apr 2002 05:39:09 -0700 (PDT) Received: by yello.shallow.net (Postfix, from userid 1001) id 8D7262A6D; Thu, 25 Apr 2002 22:39:07 +1000 (EST) Date: Thu, 25 Apr 2002 22:39:07 +1000 From: Joshua Goodall To: Dag-Erling Smorgrav Cc: Josef Karthauser , "Jordan K. Hubbard" , cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org Subject: Re: cvs commit: src/crypto/openssh servconf.c sshd_config Message-ID: <20020425123907.GJ8927@roughtrade.net> References: <200204250559.g3P5xrS51528@freefall.freebsd.org> <20020425113715.GB21335@genius.tao.org.uk> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.28i Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Thu, Apr 25, 2002 at 01:42:17PM +0200, Dag-Erling Smorgrav wrote: > Josef Karthauser writes: > > Can you find a better way of preventing this: > > > > genius% ssh dhcp59 > > otp-md5 228 dh6546 ext > > S/Key Password: > > otp-md5 170 dh0164 ext > > S/Key Password: > > otp-md5 170 dh0164 ext > > S/Key Password: > > joe@dhcp59.tao.org.uk's password: > > This is a bug in OpenSSH's S/Key code, which is not used in -CURRENT. > The problem you quote only affects -STABLE servers. > > > We shouldn't be doing S/Key by default. > > We don't in -CURRENT. See my post today in -hackers, which includes a better fix for -stable and agrees with you about -current. Incidentally the "S/Key Password:" prompt is misleading. These are libopie calls. Joshua To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message