From owner-freebsd-security Thu Mar 14 4:20:24 2002 Delivered-To: freebsd-security@freebsd.org Received: from pkl.net (spoon.pkl.net [212.111.57.14]) by hub.freebsd.org (Postfix) with ESMTP id 1E0EB37B402 for ; Thu, 14 Mar 2002 04:20:16 -0800 (PST) Received: (from rik@localhost) by pkl.net (8.9.3/8.9.3) id MAA01526 for security@freebsd.org; Thu, 14 Mar 2002 12:20:15 GMT Date: Thu, 14 Mar 2002 12:20:15 +0000 From: rik To: FreeBSD Security Subject: Re: sshd UseLogin option Message-ID: <20020314122015.GA1344@spoon.pkl.net> References: <20020313230536.B29705@blossom.cjclark.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.3.25i Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org On Thu, Mar 14, 2002 at 12:58:04PM +0100, Dag-Erling Smorgrav wrote: > "Crist J. Clark" writes: > > Who uses system passwords with ssh(1)? > > Does UseLogin disable key authentication? I've never tried it... I don't think so, but specifying a command to run does ignore UseLogin (and is documented as such), so you'll get an inconsistent environment because of that when doing cvs over ssh, as opposed to logging in over ssh. All in all, the UseLogin option seems to be not very useful, and poorly implemented. But then, we aren't using OpenSSH-portable (well, not in my source tree, anyway). These things ought to be checked against -portable -- PGP Key: D2729A3F - Keyserver: wwwkeys.uk.pgp.net - rich at rdrose dot org Key fingerprint = 5EB1 4C63 9FAD D87B 854C 3DED 1408 ED77 D272 9A3F Public key also encoded with outguess on http://rikrose.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message