In message <>,
Niels =?ISO-8859-1?Q?M=F6ller?= writes:
> Andrew Morgan <[EMAIL PROTECTED]> writes:
>
> You're very right in that the information about supported methods is
> not really needed by the ssh server. But it is needed by the ssh
> *client*. And the only way the client can get the information is from
> the server, which in turn must be able to get it from PAM.
It is only needed by the client b/c of deficiences in the userauth
methods.
On the ietf-ssh list, we are discussing this right now. A proposed
draft to correct this has been sent to the list some time ago.
I find the proposal to also be deficient, and will be posting
my proposal in the next few days. I'll copy this list.
[I've already implemented it for ssh1, and it works beautifully
with PAM. I have no plans to implement it for ssh2 as of now,
b/c of licensing restrictions with datafellow's implementation.
Not that it matters on a widescale basis since I am in the US.]
~frank
