Re: keyboard-interactive auth

To: ietf-ssh%netbsd.org@localhost
Subject: Re: keyboard-interactive auth
From: der Mouse <mouse%Rodents.Montreal.QC.CA@localhost>
Date: Thu, 8 Sep 2005 15:49:34 -0400 (EDT)

> <<< confirmation of ssh-userauth starting
> >>> request mouse/ssh-connection/none
> <<< failure, can-continue publickey,password,keyboard-interactive
> >>> request mouse/ssh-connection/keyboard-interactive
> <<< failure, can-continue publickey,password,keyboard-interactive

> "Yeah, Openssh does that."  Openssh does not keep track of whether an
> authentication method has failed to be useful on the server side.  It
> [...] expects the client to deal with this.

Okay, I can live with that (I have to be prepared to do *something* in
the face of arbitrarily broken servers, after all, and it's not that
difficult to keep a list of auth methods that appear to be
misbehaving.)

That answers the question of what openssh means in doing this - it's
rejecting keyboard-interactive auth, just in a way that rather confused
me.  But it raises the question of why openssh is rejecting
keyboard-interactive auth at all.  Any thoughts on that?

/~\ The ASCII				der Mouse
\ / Ribbon Campaign
 X  Against HTML	       mouse%rodents.montreal.qc.ca@localhost
/ \ Email!	     7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Follow-Ups:
- Re: keyboard-interactive auth
  - From: Damien Miller
- Re: keyboard-interactive auth
  - From: Jeffrey Hutzelman

References:
- keyboard-interactive auth
  - From: der Mouse
- Re: keyboard-interactive auth
  - From: Sam Hartman

Prev by Date: keyboard-interactive auth
Next by Date: Re: keyboard-interactive auth
Previous by Thread: Re: keyboard-interactive auth
Next by Thread: Re: keyboard-interactive auth
Indexes:

Home | Main Index | Thread Index | Old Index