From owner-freebsd-current@FreeBSD.ORG  Thu Feb 26 03:44:29 2004
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E3DE616A4CE
	for <current@freebsd.org>; Thu, 26 Feb 2004 03:44:29 -0800 (PST)
Received: from smtp.des.no (flood.des.no [217.116.83.31])
	by mx1.FreeBSD.org (Postfix) with ESMTP id B13B843D2F
	for <current@freebsd.org>; Thu, 26 Feb 2004 03:44:29 -0800 (PST)
	(envelope-from des@des.no)
Received: by smtp.des.no (Pony Express, from userid 666)
	id A56495309; Thu, 26 Feb 2004 12:44:28 +0100 (CET)
Received: from dwp.des.no (des.no [80.203.228.37])
	by smtp.des.no (Pony Express) with ESMTP
	id BE4385308; Thu, 26 Feb 2004 12:44:21 +0100 (CET)
Received: by dwp.des.no (Postfix, from userid 2602)
	id 9749933C71; Thu, 26 Feb 2004 12:44:21 +0100 (CET)
To: "Mike Jakubik" <mikej@rogers.com>
References: <20040226061844.QTXI189272.fep03-mail.bloor.is.net.cable.rogers.com@win2000>
From: des@des.no (Dag-Erling =?iso-8859-1?q?Sm=F8rgrav?=)
Date: Thu, 26 Feb 2004 12:44:21 +0100
In-Reply-To:
	<20040226061844.QTXI189272.fep03-mail.bloor.is.net.cable.rogers.com@win2000>
	(Mike Jakubik's message of "Thu, 26 Feb 2004 01:19:13 -0500")
Message-ID: <xzpfzcy12wa.fsf@dwp.des.no>
User-Agent: Gnus/5.090024 (Oort Gnus v0.24) Emacs/21.3 (berkeley-unix)
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: quoted-printable
X-Spam-Checker-Version: SpamAssassin 2.63 (2004-01-11) on flood.des.no
X-Spam-Level: 
X-Spam-Status: No, hits=0.0 required=5.0 tests=AWL autolearn=no version=2.63
cc: current@freebsd.org
Subject: Re: sshd_config 1.35 commit
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 26 Feb 2004 11:44:30 -0000

"Mike Jakubik" <mikej@rogers.com> writes:
> 	I have built world recently, only to find out I cant log into my
> server via ssh anymore. Am I the only one that thinks disabling password
> authentication in default sshd is a stupid idea?

Yes.  Password authentication allows the client to circumvent PAM
policies.  If your client doesn't support keyboard-interactive, get a
better client (hint: putty).

DES
--=20
Dag-Erling Sm=F8rgrav - des@des.no