IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: "too many auth failures"?



Nicolas Williams <Nicolas.Williams%oracle.com@localhost> writes:

>My view is that servers should have two failure counters: one for password
>and keyboard-interactive, another one for all others.

Yeah, I'd thought about that too, but where do you stop?  Which counter type
would a ZKP use?  Or EKE?  Or IBE?

(I still think the real problem isn't the server but the client, how's it
managing to try six different keys to get to one server?).

Peter.



Home | Main Index | Thread Index | Old Index