Date: Wed, 31 Oct 2007 16:37:16 +0100 From: =?utf-8?Q?Dag-Erling_Sm=C3=B8rgrav?= <des@des.no> To: Jeremy Chadwick <koitsu@FreeBSD.org> Cc: freebsd-current@freebsd.org, Rob Zietlow <rob.zietlow@gmail.com> Subject: Re: [7.0-Beta] can no longer ssh into just upgraded host Message-ID: <867il3xplf.fsf@ds4.des.no> In-Reply-To: <20071031143944.GB21646@eos.sc1.parodius.com> (Jeremy Chadwick's message of "Wed\, 31 Oct 2007 07\:39\:44 -0700") References: <bf64a0fe0710261147s75a5ccafweeca843211d5fa40@mail.gmail.com> <20071027101312.GA42516@eos.sc1.parodius.com> <86bqafxt96.fsf@ds4.des.no> <20071031143944.GB21646@eos.sc1.parodius.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Jeremy Chadwick <koitsu@FreeBSD.org> writes: > Dag-Erling Sm=C3=B8rgrav <des@des.no> wrote: > > What makes you think it might be PAM-related? They don't even get as > > far as exchanging version strings. > An old -stable post I read is what made me think it might be > PAM-related: > > http://lists.freebsd.org/pipermail/freebsd-stable/2004-November/009414.ht= ml The symptoms are completely different. > I don't know what stage PAM is actually induced within sshd (are any > PAM-related API calls done before version exchange, etc.). No. The client and server send their version string in plain text immediately upon establishing a TCP connection. PAM isn't initialized until after they have agreed on algorithms and keys and decided which authentication method to use. DES --=20 Dag-Erling Sm=C3=B8rgrav - des@des.no
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?867il3xplf.fsf>