CVS commit: src/crypto/external/bsd/openssh/dist

Sat, 27 Nov 2021 15:22:32 -0800 

Module Name:    src
Committed By:   he
Date:           Sat Nov 27 23:22:25 UTC 2021

Modified Files:
        src/crypto/external/bsd/openssh/dist: sshd_config

Log Message:
Amend the comment about UsePAM; the ChallengeResponseAuthentication
setting is deprecated, replaced by KbdInteractiveAuthentication,
confirmed both by man page and code.


To generate a diff of this commit:
cvs rdiff -u -r1.26 -r1.27 src/crypto/external/bsd/openssh/dist/sshd_config

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.


Modified files:

Index: src/crypto/external/bsd/openssh/dist/sshd_config
diff -u src/crypto/external/bsd/openssh/dist/sshd_config:1.26 src/crypto/external/bsd/openssh/dist/sshd_config:1.27
--- src/crypto/external/bsd/openssh/dist/sshd_config:1.26	Thu Sep  2 11:26:18 2021
+++ src/crypto/external/bsd/openssh/dist/sshd_config	Sat Nov 27 23:22:25 2021
@@ -1,4 +1,4 @@
-#	$NetBSD: sshd_config,v 1.26 2021/09/02 11:26:18 christos Exp $
+#	$NetBSD: sshd_config,v 1.27 2021/11/27 23:22:25 he Exp $
 #	$OpenBSD: sshd_config,v 1.104 2021/07/02 05:11:21 dtucker Exp $
 
 # This is the sshd server system-wide configuration file.  See
@@ -72,13 +72,13 @@ AuthorizedKeysFile	.ssh/authorized_keys
 
 # Set this to 'yes' to enable PAM authentication, account processing,
 # and session processing. If this is enabled, PAM authentication will
-# be allowed through the ChallengeResponseAuthentication and
-# PasswordAuthentication.  Depending on your PAM configuration,
-# PAM authentication via ChallengeResponseAuthentication may bypass
+# be allowed through the KbdInteractiveAuthentication and
+# PasswordAuthentication settings.  Depending on your PAM configuration,
+# PAM authentication via KbdInteractiveAuthentication may bypass
 # the setting of "PermitRootLogin without-password".
 # If you just want the PAM account and session checks to run without
 # PAM authentication, then enable this but set PasswordAuthentication
-# and ChallengeResponseAuthentication to 'no'.
+# and KbdInteractiveAuthentication to 'no'.
 UsePAM yes
 
 #AllowAgentForwarding yes

Reply via email to