Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?
From: Peter Gutmann (pgut001_at_cs.auckland.ac.nz)
Date: 08/11/05
- Next message: Mark Edwards: "Zero administration sshd on windows?"
- Previous message: Richard E. Silverman: "Re: ssh passwordless"
- In reply to: h.wulff: "Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Next in thread: Richard E. Silverman: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Reply: Richard E. Silverman: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Reply: h.wulff: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 11 Aug 2005 12:01:27 GMT
h.wulff <zuhause@aol.com> writes:
>AFAIK the "PasswordAuthentication yes" enables cleartext passwords. But
>what happends to the passwd if AllowedAuthentication is password and
>PasswordAuthentication is no?
>I'm asking because I have to enable PasswordAuthentication to let an
>older version of cryptlib work. And this raises the question where the
>difference is...
This is with OpenSSH 3.8 or 3.9, right? The problem is that SSH has two types
of password authentication which are exactly the same only different, password
authentication, and password authentication with PAM. When you connect to
OpenSSH 3.8 or 3.9 and ask for "password" authentication, it thinks you want
password authentication rather than password authentication, and disconnects
saying you need to use password authentication. If you disable password
authentication then it falls back to password authentication, and everything
is OK (as I said, the two are exactly the same, only different).
Why are you still using an old version of cryptlib? Apart from sundry other
updates, the newer versions also detect the problematic OpenSSH versions and
fudge the authentication type they're using, so they'll use password
authentication instead of password authentication and everything will work.
Peter.
- Next message: Mark Edwards: "Zero administration sshd on windows?"
- Previous message: Richard E. Silverman: "Re: ssh passwordless"
- In reply to: h.wulff: "Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Next in thread: Richard E. Silverman: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Reply: Richard E. Silverman: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Reply: h.wulff: "Re: Difference between "PasswordAuthentication yes" and "AllowedAuthentication password" ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
