[Bug 66095] [pam] template_user is broken in pam_radius

bugzilla-noreply Thu, 17 Dec 2015 12:05:58 -0800

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=66095


Dag-Erling SmÃ¸rgrav <d...@freebsd.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |d...@freebsd.org
         Resolution|FIXED                       |Rejected

--- Comment #6 from Dag-Erling SmÃ¸rgrav <d...@freebsd.org> ---
The problem is that OpenSSH checks whether the user exists before attempting
authentication.  Moreover, the OpenSSH developers consider this functionality a
security liability and have intentionally removed it from their code (see
https://blog.des.no/2015/08/openssh-pam-and-user-names/).  Therefore, we will
not fix this.

-- 
You are receiving this mail because:
You are the assignee for the bug.
_______________________________________________
freebsd-bugs@freebsd.org mailing list
https://lists.freebsd.org/mailman/listinfo/freebsd-bugs
To unsubscribe, send any mail to "freebsd-bugs-unsubscr...@freebsd.org"

[Bug 66095] [pam] template_user is broken in pam_radius

Reply via email to