login(1) doesn't enforce times.allow/times.deny over ssh(1)

Doug White dwhite at gumbysoft.com
Sun Jul 20 12:38:06 PDT 2003

On Sun, 20 Jul 2003, Farid Hajji wrote:

> When using ssh, I'm not trying public/private keys,
> just plain unix passwords. Doesn't ssh access login(1)
> in this case?

sshd does not use login unless requested to do so by the UseLogin config

There have been security vulnerabilities exposed by using this option in
the past.  You have been warned :)

Doug White                    |  FreeBSD: The Power to Serve
dwhite at gumbysoft.com          |  www.FreeBSD.org

More information about the freebsd-current mailing list