On Fri, Dec 17, 1999 at 09:52:17AM +0000, amanda wrote:
> > On Wed, Dec 15, 1999 at 10:56:50PM +0000, Dorian Moore wrote:
> > > Is there an (easy:) way to change the prompt returned if you have
> > > PermitRootLogin no
> > > in
> > > /etc/ssh/sshd_config (ssh1.2.27)
> > > and you slogin with the correct password. At the moment I get
> > > Permission denied.
> > > If I get the password wrong, but
> > > ROOT LOGIN REFUSED FROM *.*
> > > if I get the password right....
>
> Note that this patch just changes the text that the server returns. It might confuse
>one or two script kiddies, but it will not protect you against an attacker that knows
>what he's doing. That is because the error 'Permission denied' is produced by the
>client, and an attacker that can hack his client can easily change that text to
>something that looks different from the error message you produce in the server.
This is not true, I just tested the code myself on a vanilla 1.2.27 ssh client
and I got the altered message from the patch sshd daemon.
--
"Windows 95: 32 bit extensions and a graphical shell for a 16 bit patch
to an 8 bit operating system originally coded for a 4 bit microprocessor,
written by a 2 bit company that can't stand 1 bit of competition."
-- Unknown
Andrew L. Davis [EMAIL PROTECTED]
