sshd_config 1.35 commit
Mike Jakubik
mikej at rogers.com
Thu Feb 26 09:15:01 PST 2004
> -----Original Message-----
> From: owner-freebsd-current at freebsd.org
> [mailto:owner-freebsd-current at freebsd.org] On Behalf Of
> Dag-Erling Smørgrav
> Sent: Thursday, February 26, 2004 6:44 AM
> To: Mike Jakubik
> Cc: current at freebsd.org
> Subject: Re: sshd_config 1.35 commit
>
> "Mike Jakubik" <mikej at rogers.com> writes:
> > I have built world recently, only to find out I cant
> log into my
> > server via ssh anymore. Am I the only one that thinks disabling
> > password authentication in default sshd is a stupid idea?
>
> Yes. Password authentication allows the client to circumvent
> PAM policies. If your client doesn't support
> keyboard-interactive, get a better client (hint: putty).
>
> DES
When choosing ssh v2 and keyboard-interactive authentication in SecureCRT I
have to enter the password twice (it doesn’t work the first time) and I can
not save the password. You think this is better than the old behavior? What
better ssh software is there than SecureCRT? I don’t like putty. I'm not
going to memorize all my clients logins, and waste time typing them in. It’s
a pain in the ass and a waste of time. How come this PAM circumvention
wasn’t a problem before? We've always been using password logins.
More information about the freebsd-current
mailing list