IETF-SSH archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Multiple simultaneous userauth requests
The userauth draft contains this text in section 2.2:
> The client MAY send several authentication
> requests without waiting for responses from
> previous requests. The server MUST acknowledge
> any failed requests with a SSH_MSG_USERAUTH_FAILURE
> message. However, SSH_MSG_USERAUTH_SUCCESS MUST
> be sent only once, and once SSH_MSG_USERAUTH_SUCCESS
> has been sent, any further authentication requests
> received after that SHOULD be silently ignored.
This seems overly complicated? Do any clients
actually do this?
Can't we make things easier on implementers and
just say the multiple simultaneous userauth requests
are illegal?
- Joseph
Home |
Main Index |
Thread Index |
Old Index