From owner-cvs-all Fri Sep 28 7:52:21 2001 Delivered-To: cvs-all@freebsd.org Received: from silby.com (cb34181-a.mdsn1.wi.home.com [24.14.173.39]) by hub.freebsd.org (Postfix) with ESMTP id C1A7F37B411 for ; Fri, 28 Sep 2001 07:52:13 -0700 (PDT) Received: (qmail 85571 invoked by uid 1000); 28 Sep 2001 14:52:12 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 28 Sep 2001 14:52:12 -0000 Date: Fri, 28 Sep 2001 09:52:12 -0500 (CDT) From: Mike Silbersack To: Kris Kennaway Cc: Brian Feldman , , Subject: Re: cvs commit: src/crypto/openssh atomicio.h auth-chall.c auth2-chall.c canohost.h clientloop.h groupaccess.c groupaccess.h kexdh.c kexgex.c log.h mac.c mac.h misc.c misc.h pathnames.h In-Reply-To: <20010928013527.A8101@xor.obsecurity.org> Message-ID: <20010928095037.U85566-100000@achilles.silby.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-all@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Fri, 28 Sep 2001, Kris Kennaway wrote: > If you change the protocol to 2,1 then your version 1 RSA keys won't > be used by default because if the server can speak the ssh2 protocol > then the client will try to auth with SSH2 keys first (which probably > wont be set up to work, or may have different passphrases, etc) and > then fall back to SSH2 password auth. > > Kris Ah, I figured it was something like that. Too bad it's not smart enough to try both, or at least default to 2 when the host isn't listed in known_hosts. :| Mike "Silby" Silbersack To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe cvs-all" in the body of the message